General
-
Target
709423071efc64db1cc71e5ea210d6b0N
-
Size
1.4MB
-
Sample
240908-fmf69azemb
-
MD5
709423071efc64db1cc71e5ea210d6b0
-
SHA1
f960e68f9e7551015ae84c82efce21626d3755d6
-
SHA256
80c688eb323f32f41410c8290c56924bd8a721dac1a050ad0998cf17dc632730
-
SHA512
b76f1490b294b7a4e3eeaa9e64f5be022039648588c25a16611e78ea3bda331a28941185784cf84fa1ab4f35d4a5c8bca7f79d930ca431dae455554679296c0c
-
SSDEEP
24576:cq5TfcdHj4fmb9Ve9l2q+K26wQzLMnUAFFIfHWEzKJ9TtrWgXiFurFtW0zQJ9Ttp:cUTsamC9lxUFB5lFI5p
Malware Config
Targets
-
-
Target
709423071efc64db1cc71e5ea210d6b0N
-
Size
1.4MB
-
MD5
709423071efc64db1cc71e5ea210d6b0
-
SHA1
f960e68f9e7551015ae84c82efce21626d3755d6
-
SHA256
80c688eb323f32f41410c8290c56924bd8a721dac1a050ad0998cf17dc632730
-
SHA512
b76f1490b294b7a4e3eeaa9e64f5be022039648588c25a16611e78ea3bda331a28941185784cf84fa1ab4f35d4a5c8bca7f79d930ca431dae455554679296c0c
-
SSDEEP
24576:cq5TfcdHj4fmb9Ve9l2q+K26wQzLMnUAFFIfHWEzKJ9TtrWgXiFurFtW0zQJ9Ttp:cUTsamC9lxUFB5lFI5p
Score10/10-
RevengeRAT
Remote-access trojan with a wide range of capabilities.
-
RevengeRat Executable
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
AutoIT Executable
AutoIT scripts compiled to PE executables.
-