revengerat | 4d3ced6925dbce7d457b9375bcf92a15_JaffaCakes118 | Triage

Sharing

General

Target

4d3ced6925dbce7d457b9375bcf92a15_JaffaCakes118
Size

4.9MB
MD5

4d3ced6925dbce7d457b9375bcf92a15
SHA1

9d1de90356b0d5142d9f22d1405272896035a20f
SHA256

c24881f127493cbb6826c3b70bafc0858654f7c7283e0a53c3fa097867ff4727
SHA512

873ef13664dbd3ea2596113ff45d03d7ce1d42ae81a945cba6f14eb37467ae64adea6e261bd787a7676df1b7f302bb6cfdbce2012372cabd8b44a090eeb35ec6
SSDEEP

49152:B9mRDDmrw/zv9wKTLe/vLHZfFsHF59BTtjvV02/NhV9mRDDmrw/zv9wKTLe/vLHz:B93U/zRLmzpkBtD93U/zRLmzpkBt

Score

10^/10

stealer revengerat

Malware Config

Signatures

RevengeRat Executable 1 IoCs

resource	yara_rule
sample	revengerat

Revengerat family
revengerat

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4d3ced6925dbce7d457b9375bcf92a15_JaffaCakes118

Files

4d3ced6925dbce7d457b9375bcf92a15_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.rsrc
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc1
Size: 362KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ