revengerat

General

Target

09605dc7fa490c072cac25d2d269ab07c58e099870657c9fbefcb7d3b8cb233dN
Size

1.4MB
Sample

241106-bxezqasekf
MD5

6eef1dc5a1688c72aa00481401d307b0
SHA1

3cd9b23fcbc55090698b358ed730f7ce15f58db9
SHA256

09605dc7fa490c072cac25d2d269ab07c58e099870657c9fbefcb7d3b8cb233d
SHA512

89aabe324f60bd659478d710873587c2678bdd3b9d77f572ad8a3d019d03a45bf9bec5ab3dab1563e7b0f5da50a2c19c8fc83b166594671c5bb9ad4fc85791ce
SSDEEP

24576:Wq5TfcdHj4fmbqOw2qBS0smVkVMyvLlnhWEzKJ9TtLvgl/piakl3Jro0zQJ9TtDs:WUTsamVwxolC53akl325A

Score

10^/10

Malware Config

Targets

- Target
  
  09605dc7fa490c072cac25d2d269ab07c58e099870657c9fbefcb7d3b8cb233dN
- Size
  
  1.4MB
- MD5
  
  6eef1dc5a1688c72aa00481401d307b0
- SHA1
  
  3cd9b23fcbc55090698b358ed730f7ce15f58db9
- SHA256
  
  09605dc7fa490c072cac25d2d269ab07c58e099870657c9fbefcb7d3b8cb233d
- SHA512
  
  89aabe324f60bd659478d710873587c2678bdd3b9d77f572ad8a3d019d03a45bf9bec5ab3dab1563e7b0f5da50a2c19c8fc83b166594671c5bb9ad4fc85791ce
- SSDEEP
  
  24576:Wq5TfcdHj4fmbqOw2qBS0smVkVMyvLlnhWEzKJ9TtLvgl/piakl3Jro0zQJ9TtDs:WUTsamVwxolC53akl325A
Score

10^/10

revengerat discovery stealer trojan upx
- RevengeRAT
  Remote-access trojan with a wide range of capabilities.
  trojan revengerat
- Revengerat family
  revengerat
- RevengeRat Executable
  stealer
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1

T1012

System Information Discovery

2

T1082

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Revengerat family

RevengeRat Executable

Checks computer location settings

Executes dropped EXE

Loads dropped DLL

AutoIT Executable

UPX packed file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2