General
-
Target
81bb81260c6182c6209baa19c4c6b0fc852c7db66850d10bc442f923f43be8dfN.exe
-
Size
1.4MB
-
Sample
250104-lyk78swpgm
-
MD5
8d61b160122f042623818b6b04a75330
-
SHA1
3db6b0029721bb9d8ef8171cd9247e107802ce5d
-
SHA256
81bb81260c6182c6209baa19c4c6b0fc852c7db66850d10bc442f923f43be8df
-
SHA512
92874240826994b6126305df63299041405258342e70d0956274e3460e807b52b57e0aa758c44fa6943ec794b074ef803e2a0f91d4bfeb1735f527b3a69dc539
-
SSDEEP
24576:2q5TfcdHj4fmbqOw2qdS0smVkVMyvLlnhWEzKJ9TtLvgl/piakl3Jro0zQJ9TtDT:2UTsamVwxUlC53akl325/
Malware Config
Targets
-
-
Target
81bb81260c6182c6209baa19c4c6b0fc852c7db66850d10bc442f923f43be8dfN.exe
-
Size
1.4MB
-
MD5
8d61b160122f042623818b6b04a75330
-
SHA1
3db6b0029721bb9d8ef8171cd9247e107802ce5d
-
SHA256
81bb81260c6182c6209baa19c4c6b0fc852c7db66850d10bc442f923f43be8df
-
SHA512
92874240826994b6126305df63299041405258342e70d0956274e3460e807b52b57e0aa758c44fa6943ec794b074ef803e2a0f91d4bfeb1735f527b3a69dc539
-
SSDEEP
24576:2q5TfcdHj4fmbqOw2qdS0smVkVMyvLlnhWEzKJ9TtLvgl/piakl3Jro0zQJ9TtDT:2UTsamVwxUlC53akl325/
Score10/10-
RevengeRAT
Remote-access trojan with a wide range of capabilities.
-
Revengerat family
-
RevengeRat Executable
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
AutoIT Executable
AutoIT scripts compiled to PE executables.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-