revengerat | b39d78411da6390a7df0f37b908dbb1b9089abd558b9e06ee852a11fc77d7251 | Triage

Submit
Reports

Overview

overview

Static

static

5

Revenge-RAT v0.3.7z

windows10-2004-x64

1

Revenge-RAT v0.3.7z

windows10-ltsc 2021-x64

Sharing

General

Target

Revenge-RAT v0.3.7z
Size

8.7MB
Sample

250312-zdyjqastgw
MD5

3864072888fd4bc4f3c67333ecde70c7
SHA1

7982d4baabbea5f4fee4fefc2632d5535f433b35
SHA256

b39d78411da6390a7df0f37b908dbb1b9089abd558b9e06ee852a11fc77d7251
SHA512

89f13697f43680bce715ee98c98f84a56f2c2707c77a0e7a59804c46cb89a091ce213e6c98f7c264539f4634079898dbb91030e31a704f2f48161f355ef35f80
SSDEEP

196608:8hwcP7zWP5126X1CfXWcyeWWJmGr0N08mQABgYQi+maA:DcPns281CucZRmGr0NvmbD6mB

Score

10^/10

revengerat guest discovery stealer trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

Revenge-RAT v0.3.7z

Resource

win10v2004-20250217-en

windows10-2004-x64

2 signatures

900 seconds

Behavioral task

behavioral2

Sample

Revenge-RAT v0.3.7z

Resource

win10ltsc2021-20250218-en

revengerat guest discovery stealer trojan

windows10-ltsc 2021-x64

22 signatures

900 seconds

Malware Config

Extracted

Family

revengerat

Botnet

Guest

C2

127.0.0.1:4782

Mutex

RV_MUTEX

Targets

- Target
  
  Revenge-RAT v0.3.7z
- Size
  
  8.7MB
- MD5
  
  3864072888fd4bc4f3c67333ecde70c7
- SHA1
  
  7982d4baabbea5f4fee4fefc2632d5535f433b35
- SHA256
  
  b39d78411da6390a7df0f37b908dbb1b9089abd558b9e06ee852a11fc77d7251
- SHA512
  
  89f13697f43680bce715ee98c98f84a56f2c2707c77a0e7a59804c46cb89a091ce213e6c98f7c264539f4634079898dbb91030e31a704f2f48161f355ef35f80
- SSDEEP
  
  196608:8hwcP7zWP5126X1CfXWcyeWWJmGr0N08mQABgYQi+maA:DcPns281CucZRmGr0NvmbD6mB
Score

10^/10

revengerat guest discovery stealer trojan
- RevengeRAT
  Remote-access trojan with a wide range of capabilities.
  trojan revengerat
- Revengerat family
  revengerat
- RevengeRat Executable
  stealer
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

revengeratguestdiscoverystealertrojan

© 2018-2025

Terms | Privacy