revengerat | 114e0c077ec4f55df270903bc4b69e3b26fc1568cad7ef1053fcc33e50b2243c | Triage

Submit
Reports

Overview

overview

Static

static

5

114e0c077e...3c.exe

windows7-x64

114e0c077e...3c.exe

windows10-2004-x64

Sharing

General

Target

114e0c077ec4f55df270903bc4b69e3b26fc1568cad7ef1053fcc33e50b2243c
Size

951KB
Sample

240513-xd6tzshd9t
MD5

95f0024ceca563f00a226e1fc67a4018
SHA1

6c675c1c7588d96718cf25e70eb6dbfff1a7c155
SHA256

114e0c077ec4f55df270903bc4b69e3b26fc1568cad7ef1053fcc33e50b2243c
SHA512

b58c5909ba7625f2424ff9a770a6690f8b000ccf33185f4f24557bed9dbbc770fd5a565ab9b48338e4f5f645853ceafbdccef25bbbb42aa71c036205cab1bc57
SSDEEP

24576:2AHnh+eWsN3skA4RV1HDm2KXMmHaKZT56:Rh+ZkldDPK8YaKj6

Score

10^/10

revengerat marzo26 trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

114e0c077ec4f55df270903bc4b69e3b26fc1568cad7ef1053fcc33e50b2243c.exe

Resource

win7-20240220-en

revengerat marzo26 trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

114e0c077ec4f55df270903bc4b69e3b26fc1568cad7ef1053fcc33e50b2243c.exe

Resource

win10v2004-20240508-en

revengerat marzo26 trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Extracted

Family

revengerat

Botnet

Marzo26

C2

marzorevenger.duckdns.org:4230

Mutex

RV_MUTEX-PiGGjjtnxDpn

Targets

- Target
  
  114e0c077ec4f55df270903bc4b69e3b26fc1568cad7ef1053fcc33e50b2243c
- Size
  
  951KB
- MD5
  
  95f0024ceca563f00a226e1fc67a4018
- SHA1
  
  6c675c1c7588d96718cf25e70eb6dbfff1a7c155
- SHA256
  
  114e0c077ec4f55df270903bc4b69e3b26fc1568cad7ef1053fcc33e50b2243c
- SHA512
  
  b58c5909ba7625f2424ff9a770a6690f8b000ccf33185f4f24557bed9dbbc770fd5a565ab9b48338e4f5f645853ceafbdccef25bbbb42aa71c036205cab1bc57
- SSDEEP
  
  24576:2AHnh+eWsN3skA4RV1HDm2KXMmHaKZT56:Rh+ZkldDPK8YaKj6
Score

10^/10

revengerat marzo26 trojan
- RevengeRAT
  Remote-access trojan with a wide range of capabilities.
  trojan revengerat
- Drops startup file
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

revengeratmarzo26trojan

behavioral2

revengeratmarzo26trojan

© 2018-2025

Terms | Privacy