General

  • Target

    eb443a1c7b58fbaa19b881df3108ca044a7cffd4.rl.zip

  • Size

    2.6MB

  • Sample

    241105-twaygstmht

  • MD5

    b608ed0618d454f8a76e2fb155626855

  • SHA1

    57fc57fb165c290df69767cd6378990062945e0c

  • SHA256

    aa02c20205915a494154dac55a1956d4465937d7c5fc139866b9500bea6e8872

  • SHA512

    85f9a7d46b8e7a19e6be2819df2b107ef79db54858baaffeb418ac06ca188d3c33eedd97723d686b7a3f64ff4ec1a6e5b52d1f606d63387ce6759cd4ece13850

  • SSDEEP

    49152:9Sp6Le0uS+OK4Zy/OXbMbk5xeyTflq4EgRy1MoL4tcqdRmEdQHAAocwccN:oS+OK4Z8kzZxrEgRyqoL4GoQgABw5

Malware Config

Targets

    • Target

      eb443a1c7b58fbaa19b881df3108ca044a7cffd4.rl

    • Size

      2.6MB

    • MD5

      65b06b40fce0f320a7a7cdb78d4f9655

    • SHA1

      eb443a1c7b58fbaa19b881df3108ca044a7cffd4

    • SHA256

      76d6628597ba81b5e7001864c50854a82b5d3e0e401a06a22317304f603876c1

    • SHA512

      f5583153e8f36baa597a39cab30ae5de530849f52c5bf18ac129756d25d686cc576cbf15fd68eb601ee9306cba9f528226a0b4509415e47ff6603c4184400e1d

    • SSDEEP

      49152:n7IAuAriItPRvlYBIzFazl6tcepNibPK+cp23+5/N0Lf8ZahS/0fGzZSBK5ev+HD:n7IAubI2+zFm6QbyZp2g21GzGv+PJh

    • RevengeRAT

      Remote-access trojan with a wide range of capabilities.

    • Revengerat family

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks