Overview

overview

10

Static

static

10

ClientHide.exe

windows7-x64

1

ClientHide.exe

windows10-1703-x64

1

ClientHide.exe

windows10-2004-x64

1

ClientHide.exe

windows11-21h2-x64

1

ClientIL.exe

windows7-x64

1

ClientIL.exe

windows10-1703-x64

1

ClientIL.exe

windows10-2004-x64

1

ClientIL.exe

windows11-21h2-x64

1

ClientObf.exe

windows7-x64

1

ClientObf.exe

windows10-1703-x64

1

ClientObf.exe

windows10-2004-x64

1

ClientObf.exe

windows11-21h2-x64

1

ClientPress.exe

windows7-x64

1

ClientPress.exe

windows10-1703-x64

1

ClientPress.exe

windows10-2004-x64

1

ClientPress.exe

windows11-21h2-x64

1

ClientPubType.exe

windows7-x64

1

ClientPubType.exe

windows10-1703-x64

1

ClientPubType.exe

windows10-2004-x64

1

ClientPubType.exe

windows11-21h2-x64

1

ClientRandName.exe

windows7-x64

1

ClientRandName.exe

windows10-1703-x64

1

ClientRandName.exe

windows10-2004-x64

1

ClientRandName.exe

windows11-21h2-x64

1

ClientString.exe

windows7-x64

1

ClientString.exe

windows10-1703-x64

1

ClientString.exe

windows10-2004-x64

1

ClientString.exe

windows11-21h2-x64

1

ClientTamp.exe

windows7-x64

1

ClientTamp.exe

windows10-1703-x64

1

ClientTamp.exe

windows10-2004-x64

1

ClientTamp.exe

windows11-21h2-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ClientTamp.zip

  • Size

    135KB

  • Sample

    240611-15p74ateqc

  • MD5

    65af74c275cbc256e4b2daaf3320cbe0

  • SHA1

    87ac028505bf1d71bdb5d8ba0bfc54d8b71ee778

  • SHA256

    43b48c044e4477eef46fc4238142651dceaba7679bb6cefc46f854b935475699

  • SHA512

    246e3aa21526ed509fb3fd103f7a193f360b6ea78393476ff771113386aaab55934e62d4af51317e9483fe52293ee5174329dcd5a8ea69cc71db92d5df8daf29

  • SSDEEP

    3072:U8u5cJ2bqpCWV7nDAln56xFn/SCHnIfAqU8zH3nJhVic:tu582Ulo8fxHIpFHZhUc

Score
10/10
revengerattrapnetstealer

Malware Config

Extracted

Family

revengerat

Botnet

TrapNET

C2

44.33.44.33:333

Mutex

67REeserssee3

Targets

    • Target

      ClientHide.exe

    • Size

      17KB

    • MD5

      ae3f2f2fc13c130d70df126b14c51210

    • SHA1

      dd62ba08f61818dd02436746a8d46bc3c05dac25

    • SHA256

      21b4ab255d4c40540be00c93e10a274671812c7318f7f6a3fd2ebd92ba4e8b86

    • SHA512

      64359bb252c0f0e189ec4a9f8bf6f910986b5bfa9857bb046bc7d07368982800c09699a8e7ef2aa65c6bfba324fa3a8b7cc0ba4625634389eef6895b40378adb

    • SSDEEP

      384:+c0d1j2vP1cys8z6204/m5izTwhK/bmmABvRPJnMbES+kKoll3cbXsVK/yN2q92:+ci1QOK/6UKo8U3

    Score
    1/10
    behavioral1behavioral2behavioral3behavioral4

    • Target

      ClientIL.exe

    • Size

      51KB

    • MD5

      3f9191fa1b76f6472761471c985c4742

    • SHA1

      63d992020f3d619e650d62dc6b2f63230cac287f

    • SHA256

      616c1e73617a8da587216cf8f2138455f97d6d85009d5c436e8d78085cf09832

    • SHA512

      737a905b837c60ea94344e2c49ec50e7d517e3188fdfe92c9a3e568a4b70331d1aa7a5e14b3e22ead81600e270c36001f6eba26cd46ed314a794a0aafb787cb6

    • SSDEEP

      1536:gA+lg859qpc20Gg+SnXo0sYTfc9nyc/Pn2S:gAPcIW4dI0yc/P2S

    Score
    1/10
    behavioral5behavioral6behavioral7behavioral8

    • Target

      ClientObf.exe

    • Size

      50KB

    • MD5

      c0bd75020aed70ca986c054b5906de89

    • SHA1

      19582b6eaae86d1cf3c38d46c982299740f02f08

    • SHA256

      402b782a05f8778db5412b4e3a49cb70472691e8e51f348a2f022b3bab98c50b

    • SHA512

      07db48d134d7edd4589dff3528b141447b8b708365dd41fd46d5f521214329e95af14615aa67776ddc8f90c16887a7853e65b52107fb2f941c464f5bbdb0969b

    • SSDEEP

      768:04NAzylOgHy859q8wo0LMuDE2rGvCV7DcN/TVc4e7Nj+fRdDS0W1y2T:lA+lg859qZtNjUN/TqNj4tnW1

    Score
    1/10
    behavioral10behavioral11behavioral12behavioral9

    • Target

      ClientPress.exe

    • Size

      16KB

    • MD5

      5c0fb2f20831b19d7a7f53bd40384fe2

    • SHA1

      850da9b7e109466ff784c52aa8fd335c7a0cf015

    • SHA256

      0216971d844469c4dd38583454bf60d1e404292720bd19633efc880387a2bc97

    • SHA512

      0eac28b076e2d6aa4041382a6d321e76371ed513123d9a4831c134b5a4af5c2d06bcdf4d4f53dba958476ce09882fa2ca75034d278f56c6196cb8980039f8ac1

    • SSDEEP

      384:qq/5gtLhlVD/Ng7b9oDPlMNcLlb5sVKXyz5Ct:qq/5gphlVhWclMNEuo

    Score
    1/10
    behavioral13behavioral14behavioral15behavioral16

    • Target

      ClientPubType.exe

    • Size

      50KB

    • MD5

      7bb83f6e1b0d50c76798c782e2fa4274

    • SHA1

      48944373a2cb93e316d1344c65d4777304e6e928

    • SHA256

      1c7031f637239fce1f4faf000833f50fa86ffc525ec1d5257f7fad0c69ea79e4

    • SHA512

      f7d4efb2c5876e5b84bd1c9ac713fbffddc032b3c74848d9d476b6fe469339d76cec83d4d23edc749a8e3b960673d8c23443e6e029e8fe51a5c053f2a8ddc911

    • SSDEEP

      768:z4NAzylOgHy859q0RnoCnQFgrRH5xcEqVy7TWYNPfuYAMxkS0tNUh6sw2Tl:AA+lg859q0loCQC9cEc0TbuYAEknQ

    Score
    1/10
    behavioral17behavioral18behavioral19behavioral20

    • Target

      ClientRandName.exe

    • Size

      16KB

    • MD5

      ee074591c120441a83cf4b5264a8f5a3

    • SHA1

      db49dcba75132b7d5a30d6b36b438f1f2afdf73f

    • SHA256

      a1386e5761069eb672511216ae6069ce1c65c6a29b338ae78c863a11b5425748

    • SHA512

      f18c119529b794410e95f14fdbc84f07894b5b4b21a60f20909a31d6227e3eafeede3db9d1b63716f77d9e480f5a235afdfd662e21097bd7f221b984473cb393

    • SSDEEP

      384:a/5gtLhlVD/Ng0j9muhNculb5sSZVcyO5Ct:a/5gphlVh9wuhNfdko

    Score
    1/10
    behavioral21behavioral22behavioral23behavioral24

    • Target

      ClientString.exe

    • Size

      51KB

    • MD5

      ca13aa2e15b7b7836c3b680c9f91548b

    • SHA1

      80575ef051bf51190c7f354af89f628c9a0f829d

    • SHA256

      6e8706f6caa24a4a7da30bfa1f35c6d37178c637e867ce3f05321ff9d79a0998

    • SHA512

      bbcc576959a5ece6ec69224cc4111757dc860a1b41540b68683928e38568bc26991c0d3ae1261236e549709b8930427e704f98b05b48f1070919c640e88f7c2b

    • SSDEEP

      768:s4NAzylOgHy859q6P6yab2hpyoEtJT7/bj2uIoS0EUB2T:dA+lg859q61eogTfj2yn

    Score
    1/10
    behavioral25behavioral26behavioral27behavioral28

    • Target

      ClientTamp.exe

    • Size

      51KB

    • MD5

      d867122ca1cc6dcd4e699f8fd284a464

    • SHA1

      b8e0aabe382e828e295c8fb27a4b677b703cea12

    • SHA256

      fac14b21a9a04a546f46ee55b531e6c75467f78417b92ccf0303c7b7ca500a51

    • SHA512

      7a0cfa72db6b6b4caba69291dab90e97c429a82adad79bbe6a301f262fcfced12a9e4ec6f1b916b2900792cb6b622cfce8a1184c8d46a13b266ba0846dc7613b

    • SSDEEP

      768:44NAzylOgHy859qJQDIBdC/bukB4THbdag+62S0pQuD2T:JA+lg859qJQDr/CfTRt+1nS

    Score
    1/10
    behavioral29behavioral30behavioral31behavioral32

MITRE ATT&CK Matrix

Tasks

static1

stealertrapnetrevengerat
Score
10/10

behavioral1

Score
1/10

behavioral2

Score
1/10

behavioral3

Score
1/10

behavioral4

Score
1/10

behavioral5

Score
1/10

behavioral6

Score
1/10

behavioral7

Score
1/10

behavioral8

Score
1/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

Score
1/10

behavioral12

Score
1/10

behavioral13

Score
1/10

behavioral14

Score
1/10

behavioral15

Score
1/10

behavioral16

Score
1/10

behavioral17

Score
1/10

behavioral18

Score
1/10

behavioral19

Score
1/10

behavioral20

Score
1/10

behavioral21

Score
1/10

behavioral22

Score
1/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
1/10

behavioral32

Score
1/10