revengerat | 05ba26277038082045e06c102ae5ca998339f20de977c726f06deae857b3408f | Triage

Sharing

General

Target

JaffaCakes118_305822928b102332ae60d12f02da1c41
Size

24KB
Sample

241231-xn6xqswqen
MD5

305822928b102332ae60d12f02da1c41
SHA1

160a161ca694a7e92d541de2210e5a361171afc8
SHA256

05ba26277038082045e06c102ae5ca998339f20de977c726f06deae857b3408f
SHA512

c5cbf3459c14a78cd99c47db627f4d3ced418650956ae3293e6f02f9e40a4850fa8566497286f8abe0a94fcaf2f91e8a31bf5b6ece9d05d2e9d3858379381981
SSDEEP

192:6NXrAjPzOpqUg7oGtlJd0jtD3zaMgebhVGpwHVzoitEd:6NXrAnAELbkRpFu6toiSd

Score

10^/10

revengerat limerevenge

Malware Config

Extracted

Family

revengerat

Botnet

LimeRevenge

Mutex

29a-8fa6-0ac610b243aa

Targets

- Target
  
  JaffaCakes118_305822928b102332ae60d12f02da1c41
- Size
  
  24KB
- MD5
  
  305822928b102332ae60d12f02da1c41
- SHA1
  
  160a161ca694a7e92d541de2210e5a361171afc8
- SHA256
  
  05ba26277038082045e06c102ae5ca998339f20de977c726f06deae857b3408f
- SHA512
  
  c5cbf3459c14a78cd99c47db627f4d3ced418650956ae3293e6f02f9e40a4850fa8566497286f8abe0a94fcaf2f91e8a31bf5b6ece9d05d2e9d3858379381981
- SSDEEP
  
  192:6NXrAjPzOpqUg7oGtlJd0jtD3zaMgebhVGpwHVzoitEd:6NXrAnAELbkRpFu6toiSd
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

limerevengerevengerat

behavioral1

behavioral2