Overview

overview

10

Static

static

10

d82342e8b9...39.exe

windows7-x64

1

d82342e8b9...39.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    d82342e8b98d476fda5451eb141adfc0620ec4568f96d51c5fce6db7a9795439

  • Size

    17KB

  • MD5

    03450fc532a38cccf3fa1430bf0fe2b9

  • SHA1

    d8b6d0d8dacf25089d5881ea77fe6b70b749fab9

  • SHA256

    d82342e8b98d476fda5451eb141adfc0620ec4568f96d51c5fce6db7a9795439

  • SHA512

    6e00b8aebe7f3a51b1f26a8663f3e83869e47d79cd0e7bb49c96f2d527c48fef7bbcf666b15e4c64618d5903cf15c37c648c9db2bedcc060f122e6c07d6100f6

  • SSDEEP

    384:O3jwAmOKq21cys8z6204/meizTwl63ncSAZvRPJnMjPK+EKoll3cbXsVKJyF2q92:O3jwFOe163c/Ko8O3

Score
10/10
stealerguestrevengerat

Malware Config

Extracted

Family

revengerat

Botnet

Guest

C2

178.17.174.71:3310

Mutex

RV_MUTEX-HxdYuaWVCGnhp

Signatures

  • RevengeRat Executable 1 IoCs
    stealer
  • Revengerat family
    revengerat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d82342e8b98d476fda5451eb141adfc0620ec4568f96d51c5fce6db7a9795439
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections