revengerat | 75909f316e1962762a4fd1d2c6f6f8a2e9678cc2026b57343f9ed9e0380602c8 | Triage

Submit
Reports

Overview

overview

Static

static

3

d08d3da27e...18.exe

windows7-x64

d08d3da27e...18.exe

windows10-2004-x64

Analysis

max time kernel
149s
max time network
134s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
06-09-2024 22:13

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d08d3da27ef135cfa0d2bafb3da842af_JaffaCakes118.exe

Resource

win7-20240903-en

revengerat @คนมันเกรียน trojan

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

d08d3da27ef135cfa0d2bafb3da842af_JaffaCakes118.exe

Resource

win10v2004-20240802-en

revengerat @คนมันเกรียน trojan

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

d08d3da27ef135cfa0d2bafb3da842af_JaffaCakes118.exe
Size

101KB
MD5

d08d3da27ef135cfa0d2bafb3da842af
SHA1

0c6806f2449a8762f6667a8bd8deb2cb6bf40270
SHA256

75909f316e1962762a4fd1d2c6f6f8a2e9678cc2026b57343f9ed9e0380602c8
SHA512

f956632aa5e4921212c12ff1cae05f6150aed4c05e82746b44fe0f6318d110488d79581a1c573a157b0808cdc00654c51acacc942e8d718a4db44c779b0eadda
SSDEEP

768:gxHjjlITm9we8640dIG9RWDv1AG3BlIWs02:gBqTmR

Score

10^/10

revengerat @คนมันเกรียน trojan

Malware Config

Extracted

Family

revengerat

Botnet

@คนมันเกรียน

C2

127.0.0.1:333

Mutex

f28c837f4bd2

Signatures

RevengeRAT
Remote-access trojan with a wide range of capabilities.
trojan revengerat

Processes

C:\Users\Admin\AppData\Local\Temp\d08d3da27ef135cfa0d2bafb3da842af_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\d08d3da27ef135cfa0d2bafb3da842af_JaffaCakes118.exe"
1⤵
PID:2700

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2700-0-0x00007FFEAA315000-0x00007FFEAA316000-memory.dmp

Filesize
4KB

Download
memory/2700-1-0x00007FFEAA060000-0x00007FFEAAA01000-memory.dmp

Filesize
9.6MB

Download
memory/2700-2-0x000000001B920000-0x000000001B9C6000-memory.dmp

Filesize
664KB

Download
memory/2700-3-0x00007FFEAA060000-0x00007FFEAAA01000-memory.dmp

Filesize
9.6MB

Download
memory/2700-4-0x00007FFEAA315000-0x00007FFEAA316000-memory.dmp

Filesize
4KB

Download
memory/2700-5-0x00007FFEAA060000-0x00007FFEAAA01000-memory.dmp

Filesize
9.6MB

Download
memory/2700-6-0x0000000001420000-0x000000000142A000-memory.dmp

Filesize
40KB

Download
memory/2700-7-0x000000001C420000-0x000000001C8EE000-memory.dmp

Filesize
4.8MB

Download

© 2018-2024

Terms | Privacy