revengerat | 3322d251af320c0be964869e6e2dfba23181f7cce97a15507015df82ed3d4087 | Triage

Sharing

General

Target

3322d251af320c0be964869e6e2dfba23181f7cce97a15507015df82ed3d4087
Size

16KB
Sample

240911-y2g17s1bkk
MD5

ef894461a9e1c9266592fafb55cfe172
SHA1

2fd3d2d4b3949ded0eec68ef8385424897fd4786
SHA256

3322d251af320c0be964869e6e2dfba23181f7cce97a15507015df82ed3d4087
SHA512

a5c2326e8954c216924f00034628d7298ecb4178c4a1bd5c77bb1b9b33412c6fb7480eaae51eacb4e6e2efa891f2906581330a8f3482ffe547d53c5e55e7339d
SSDEEP

192:MArl/uA7W/d1UR+WgMbwJFCNieLqaC9oDPlksMR/cLlbb+aR9nsVVImyx5+vtte:9/KQRpNGr9oDPlMNcLlb5sVKmyx5Ct

Score

10^/10

revengerat guest stealer

Malware Config

Extracted

Family

revengerat

Botnet

Guest

C2

127.0.0.1:4444

127.0.0.1:1337

192.168.1.3:4444

192.168.1.3:1337

192.168.137.1:4444

192.168.137.1:1337

192.168.1.2:4444

192.168.1.2:1337

Mutex

RV_MUTEX

Targets

- Target
  
  3322d251af320c0be964869e6e2dfba23181f7cce97a15507015df82ed3d4087
- Size
  
  16KB
- MD5
  
  ef894461a9e1c9266592fafb55cfe172
- SHA1
  
  2fd3d2d4b3949ded0eec68ef8385424897fd4786
- SHA256
  
  3322d251af320c0be964869e6e2dfba23181f7cce97a15507015df82ed3d4087
- SHA512
  
  a5c2326e8954c216924f00034628d7298ecb4178c4a1bd5c77bb1b9b33412c6fb7480eaae51eacb4e6e2efa891f2906581330a8f3482ffe547d53c5e55e7339d
- SSDEEP
  
  192:MArl/uA7W/d1UR+WgMbwJFCNieLqaC9oDPlksMR/cLlbb+aR9nsVVImyx5+vtte:9/KQRpNGr9oDPlMNcLlb5sVKmyx5Ct
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

stealerguestrevengerat

behavioral1

behavioral2