revengerat

General

Target

33945d89915cde3b544d70473bda2c798fb8769a385a35ffa59567f2aed0b711.exe
Size

1.4MB
Sample

241202-blgdeawrcq
MD5

008f4bb84e287227a7b4e92522fe39c7
SHA1

e4013d7c81ecd1cf40990e73e6c65ce55d51a860
SHA256

33945d89915cde3b544d70473bda2c798fb8769a385a35ffa59567f2aed0b711
SHA512

d53be6481857921ecc8905b79b843facf8d4e48a7019251bb0bf5424cc062e027cc8298428994ac427aaea4bf68230ddc8b81de7ff7c9564e672e5e791b468a4
SSDEEP

24576:wq5TfcdHj4fmb9Ve9y2qrmIMeYyBMLVzjrKEzKJ9TtL3/7/ij+O0zQJ9TtD5l9:wUTsamC9yxqjw53ij+25t

Score

10^/10

Malware Config

Targets

- Target
  
  33945d89915cde3b544d70473bda2c798fb8769a385a35ffa59567f2aed0b711.exe
- Size
  
  1.4MB
- MD5
  
  008f4bb84e287227a7b4e92522fe39c7
- SHA1
  
  e4013d7c81ecd1cf40990e73e6c65ce55d51a860
- SHA256
  
  33945d89915cde3b544d70473bda2c798fb8769a385a35ffa59567f2aed0b711
- SHA512
  
  d53be6481857921ecc8905b79b843facf8d4e48a7019251bb0bf5424cc062e027cc8298428994ac427aaea4bf68230ddc8b81de7ff7c9564e672e5e791b468a4
- SSDEEP
  
  24576:wq5TfcdHj4fmb9Ve9y2qrmIMeYyBMLVzjrKEzKJ9TtL3/7/ij+O0zQJ9TtD5l9:wUTsamC9yxqjw53ij+25t
Score

10^/10

revengerat discovery stealer trojan upx
- RevengeRAT
  Remote-access trojan with a wide range of capabilities.
  trojan revengerat
- Revengerat family
  revengerat
- RevengeRat Executable
  stealer
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1

T1012

System Information Discovery

2

T1082

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Revengerat family

RevengeRat Executable

Checks computer location settings

Executes dropped EXE

Loads dropped DLL

AutoIT Executable

UPX packed file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2