General
-
Target
d57b4964f5bd056d62883c322bdd6ba03b6378256f2338c17afdb07bd05197ed.exe
-
Size
1.4MB
-
Sample
241231-3v6s7sylbn
-
MD5
fadb7bce05967086092f5b763a567823
-
SHA1
b8f791a06531e2ad48aec8cbb76f4ed00e47acea
-
SHA256
d57b4964f5bd056d62883c322bdd6ba03b6378256f2338c17afdb07bd05197ed
-
SHA512
67503f7be55361f45ca9452c6f4a95ce3463083f34e205b74fab809e1cddb0071ddfb1c62de666e9a336b36946e6d1c3323b0a45f0b23c9bc818871b4612e791
-
SSDEEP
24576:kq5TfcdHj4fmbO2qVEzKJ9Ttr8LnUA8WYtWYzYPVR0zQJ9TtFaLnUMvkYtWYnYPR:kUTsamSxP52YtWYzYPz5DYtWYnYPR
Malware Config
Targets
-
-
Target
d57b4964f5bd056d62883c322bdd6ba03b6378256f2338c17afdb07bd05197ed.exe
-
Size
1.4MB
-
MD5
fadb7bce05967086092f5b763a567823
-
SHA1
b8f791a06531e2ad48aec8cbb76f4ed00e47acea
-
SHA256
d57b4964f5bd056d62883c322bdd6ba03b6378256f2338c17afdb07bd05197ed
-
SHA512
67503f7be55361f45ca9452c6f4a95ce3463083f34e205b74fab809e1cddb0071ddfb1c62de666e9a336b36946e6d1c3323b0a45f0b23c9bc818871b4612e791
-
SSDEEP
24576:kq5TfcdHj4fmbO2qVEzKJ9Ttr8LnUA8WYtWYzYPVR0zQJ9TtFaLnUMvkYtWYnYPR:kUTsamSxP52YtWYzYPz5DYtWYnYPR
Score10/10-
RevengeRAT
Remote-access trojan with a wide range of capabilities.
-
Revengerat family
-
RevengeRat Executable
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
AutoIT Executable
AutoIT scripts compiled to PE executables.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-