revengerat | 8a7230ab2abd3f810c1ffd73f94aa107c917a10d2888d8f180ba50ced7b11665 | Triage

Sharing

General

Target

JaffaCakes118_8a7230ab2abd3f810c1ffd73f94aa107c917a10d2888d8f180ba50ced7b11665
Size

7KB
Sample

241222-xbwk8svphy
MD5

fc60c98a6c3d6ab1fd342a0162aba29b
SHA1

a56594e84e16699d26f744bb6b63e41a5d95600c
SHA256

8a7230ab2abd3f810c1ffd73f94aa107c917a10d2888d8f180ba50ced7b11665
SHA512

861906e7102299a2295bc6438755934510b6db47478d80569dcfdfe9e60a4bce6a236e5a6e3e2add273501f820f6be6ecfbc7354496feda7a38120ca24c30fb8
SSDEEP

192:CZXFJv6cHWHDSO0K34xecXrEvnr9cODM2rP9vz:CZ1JSLJp3c/ODMq9r

Score

10^/10

revengerat mr_ahmed discovery

Malware Config

Extracted

Family

revengerat

Botnet

MR_ahmed

C2

lapoire3.hopto.org:333

Mutex

30ebdfdbdedb437e914

Targets

- Target
  
  0941a45e948795bd86664743b6c92f4abb0a55655ea22c48e75dcfd479ecac69.exe
- Size
  
  24KB
- MD5
  
  55e191dfff49a20da461951d492712cc
- SHA1
  
  70522b19a60c7a81fd6b7a73e823384cacbaebaf
- SHA256
  
  0941a45e948795bd86664743b6c92f4abb0a55655ea22c48e75dcfd479ecac69
- SHA512
  
  3a266661a0c8d0eed5205cedd7d0f88c866e246794368a01cda915cfa056bb161ee23835d5bfcfbdacf70753df3763eb93666178441c88b4065afea039b77d68
- SSDEEP
  
  192:ID+8Pa9S8kjYTDGgbcp4Ll9KSAfF9aEOnryD91ABkGxVXzqoN/2RJg:IDP/jYTDGggp4K3fJWyDbAnxwoNB
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

mr_ahmedrevengerat

behavioral1

behavioral2