revengerat | 117f6677eb682b7d088ad3acd3ef26250a4fb03f366c5c53e44d425a82a89db8 | Triage

Sharing

General

Target

117f6677eb682b7d088ad3acd3ef26250a4fb03f366c5c53e44d425a82a89db8N.exe
Size

17KB
Sample

250323-a5996ayns9
MD5

528b08140fe6e17d064a627982522b60
SHA1

943bbd088a257cf367ec368b976f4ca0459b88e5
SHA256

117f6677eb682b7d088ad3acd3ef26250a4fb03f366c5c53e44d425a82a89db8
SHA512

a69f23e3ec4c72cee32e0497cf061ed415724b7e164836d1a2d545527e066693eed2d804bdf9870cbd838c756efc8540504f3ebae089d905da06b1fc1d20acdc
SSDEEP

192:LaDFitXkdCaRXz5MvsgzJF7Y9/tuLvzy+bDPDtJZqMeDaRzu6bh+aF9nsVVIP2e1:2DAtXmUhc/tu6+F3Du6bTsVKP1y87q9m

Score

10^/10

revengerat dxh_spcial_hack stealer

Malware Config

Extracted

Family

revengerat

Botnet

DxH_Spcial_Hack

C2

mralaa1.myq-see.com:9292

Mutex

RV_MUTEX-RZblRvZwfRtNH

Targets

- Target
  
  117f6677eb682b7d088ad3acd3ef26250a4fb03f366c5c53e44d425a82a89db8N.exe
- Size
  
  17KB
- MD5
  
  528b08140fe6e17d064a627982522b60
- SHA1
  
  943bbd088a257cf367ec368b976f4ca0459b88e5
- SHA256
  
  117f6677eb682b7d088ad3acd3ef26250a4fb03f366c5c53e44d425a82a89db8
- SHA512
  
  a69f23e3ec4c72cee32e0497cf061ed415724b7e164836d1a2d545527e066693eed2d804bdf9870cbd838c756efc8540504f3ebae089d905da06b1fc1d20acdc
- SSDEEP
  
  192:LaDFitXkdCaRXz5MvsgzJF7Y9/tuLvzy+bDPDtJZqMeDaRzu6bh+aF9nsVVIP2e1:2DAtXmUhc/tu6+F3Du6bTsVKP1y87q9m
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

stealerdxh_spcial_hackrevengerat

behavioral1

behavioral2