revengerat | 428834a2c88826dd2770ba1c656ccba83dad842f01c6dc0eedeb9c41d2d9549f | Triage

Sharing

General

Target

428834a2c88826dd2770ba1c656ccba83dad842f01c6dc0eedeb9c41d2d9549f.exe
Size

17KB
Sample

250323-1qx96aw1fv
MD5

99b994e89e27dac2fd968ba504e7548b
SHA1

2cb8dc84a31a973dc0c78e3171e9d56faa41a72f
SHA256

428834a2c88826dd2770ba1c656ccba83dad842f01c6dc0eedeb9c41d2d9549f
SHA512

686ea1daf5f36da2aa4069ddeca43e650252ae11e4e8ec304de96f9c0cbab56c0d70ce02ff937d3f32dafe9953a1c555cb1ed43fc8f536d64041660a5108bd59
SSDEEP

192:LaDFitXkdCaRXz5MvsgzJF7Y9/tuLvzy+bDPDtJZqMeDaRzu6bh+aF9nsVVIP2ed:2DAtXmUhc/tu6+F3Du6bTsVKP1y87q92

Score

10^/10

revengerat dxh_spcial_hack stealer

Malware Config

Extracted

Family

revengerat

Botnet

DxH_Spcial_Hack

C2

mralaa1.myq-see.com:9292

Mutex

RV_MUTEX-RZblRvZwfRtNH

Targets

- Target
  
  428834a2c88826dd2770ba1c656ccba83dad842f01c6dc0eedeb9c41d2d9549f.exe
- Size
  
  17KB
- MD5
  
  99b994e89e27dac2fd968ba504e7548b
- SHA1
  
  2cb8dc84a31a973dc0c78e3171e9d56faa41a72f
- SHA256
  
  428834a2c88826dd2770ba1c656ccba83dad842f01c6dc0eedeb9c41d2d9549f
- SHA512
  
  686ea1daf5f36da2aa4069ddeca43e650252ae11e4e8ec304de96f9c0cbab56c0d70ce02ff937d3f32dafe9953a1c555cb1ed43fc8f536d64041660a5108bd59
- SSDEEP
  
  192:LaDFitXkdCaRXz5MvsgzJF7Y9/tuLvzy+bDPDtJZqMeDaRzu6bh+aF9nsVVIP2ed:2DAtXmUhc/tu6+F3Du6bTsVKP1y87q92
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

stealerdxh_spcial_hackrevengerat

behavioral1

behavioral2