Overview

overview

10

Static

static

7

997a5c705e...0N.exe

windows7-x64

10

997a5c705e...0N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    997a5c705e9f2761962ac35ebcdd88a0N.exe

  • Size

    1.1MB

  • Sample

    240915-f67hjsxfpg

  • MD5

    997a5c705e9f2761962ac35ebcdd88a0

  • SHA1

    ab637b8c25b4e5677a9eb89c2d649400ff1314fe

  • SHA256

    b2ee5bd5b0e3cc0f9309ff42323f66f638542301d33beefa600a23a90ed94801

  • SHA512

    719a9c6406e5f598af03c543bd63dedae2e6e11478419c515fe251f9c2729e29ee9a0e0283e0bd959c6af7b23b81bcf7ff67b935583ff38798df533c8e3f1430

  • SSDEEP

    24576:Sq5TfcdHj4fmbo2q40MmV0VMXfGqcnUsG0Eh3lWaUnfnnO/sWv5:SUTsamsxw3nhwlonnO/l

Score
10/10
revengeratdiscoverystealertrojanupx

Malware Config

Targets

    • Target

      997a5c705e9f2761962ac35ebcdd88a0N.exe

    • Size

      1.1MB

    • MD5

      997a5c705e9f2761962ac35ebcdd88a0

    • SHA1

      ab637b8c25b4e5677a9eb89c2d649400ff1314fe

    • SHA256

      b2ee5bd5b0e3cc0f9309ff42323f66f638542301d33beefa600a23a90ed94801

    • SHA512

      719a9c6406e5f598af03c543bd63dedae2e6e11478419c515fe251f9c2729e29ee9a0e0283e0bd959c6af7b23b81bcf7ff67b935583ff38798df533c8e3f1430

    • SSDEEP

      24576:Sq5TfcdHj4fmbo2q40MmV0VMXfGqcnUsG0Eh3lWaUnfnnO/sWv5:SUTsamsxw3nhwlonnO/l

    Score
    10/10
    revengeratdiscoverystealertrojanupx

    • RevengeRAT

      Remote-access trojan with a wide range of capabilities.

      trojanrevengerat

    • RevengeRat Executable

      stealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks