Overview

overview

10

Static

static

10

2024-10-15...ar.exe

windows7-x64

2024-10-15...ar.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-10-15_4311b98ae24dfad35d91b838e1102e4a_hiddentear

  • Size

    192KB

  • MD5

    4311b98ae24dfad35d91b838e1102e4a

  • SHA1

    db965f0311ccbe7e2564137d09ba50675281dc47

  • SHA256

    f5af35e229884910512cb214f76e9fa43adf5888a689c2b079a07e5b2a504806

  • SHA512

    75c1b5355ad8b7fa6d0e4af5aa25640ab74624c907054fa51209bfe8c107438b05c0e7d8562c3cfd712ac47e9099a086d0eec01dfc3763b75f5c39a13b7e7270

  • SSDEEP

    3072:DkHAOz+xTmGz0rhSZNtXLM+lmsopID8Zb7:c+510dmtg+lDdu

Score
10/10
stealerrevengerat

Malware Config

Signatures

  • RevengeRat Executable 1 IoCs
    stealer
  • Revengerat family
    revengerat
  • .NET Reactor proctector 1 IoCs

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-10-15_4311b98ae24dfad35d91b838e1102e4a_hiddentear
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections