revengerat | cd13ea6d49b909c9b85b67cb549755bfc3a0d2d4eb34a16cbb75ce6af3256691 | Triage

Sharing

General

Target

cd13ea6d49b909c9b85b67cb549755bfc3a0d2d4eb34a16cbb75ce6af3256691.exe
Size

31KB
Sample

241124-z7jyeszpby
MD5

1d3916d851e22b08adf4421bf31ddecc
SHA1

a1a45bb7b754c604c139470dbcf6a08e2f01a2c9
SHA256

cd13ea6d49b909c9b85b67cb549755bfc3a0d2d4eb34a16cbb75ce6af3256691
SHA512

00b2f4d78ab5a540b1eac5d596b4a839500f647dda06d8d37cd0ce46a4483aa89973569bdf2a7ea7050eafa8cc2dc8c775fccbc242b34d17c8e9b171619b954d
SSDEEP

384:IG2mnny19npjllT9oDPlMNcLlb5sVKFyn5Ctj4XuJZwtfXbMpBjSr8f0DBRJPWBo:IG2mnny19tfclMNE8otHw8w1Pmo

Score

10^/10

revengerat guest stealer

Malware Config

Extracted

Family

revengerat

Botnet

Guest

C2

127.0.0.1:4444

127.0.0.1:1337

192.168.1.3:4444

192.168.1.3:1337

Mutex

RV_MUTEX

Targets

- Target
  
  cd13ea6d49b909c9b85b67cb549755bfc3a0d2d4eb34a16cbb75ce6af3256691.exe
- Size
  
  31KB
- MD5
  
  1d3916d851e22b08adf4421bf31ddecc
- SHA1
  
  a1a45bb7b754c604c139470dbcf6a08e2f01a2c9
- SHA256
  
  cd13ea6d49b909c9b85b67cb549755bfc3a0d2d4eb34a16cbb75ce6af3256691
- SHA512
  
  00b2f4d78ab5a540b1eac5d596b4a839500f647dda06d8d37cd0ce46a4483aa89973569bdf2a7ea7050eafa8cc2dc8c775fccbc242b34d17c8e9b171619b954d
- SSDEEP
  
  384:IG2mnny19npjllT9oDPlMNcLlb5sVKFyn5Ctj4XuJZwtfXbMpBjSr8f0DBRJPWBo:IG2mnny19tfclMNE8otHw8w1Pmo
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

stealerguestrevengerat

behavioral1

behavioral2