General
-
Target
f2464c122ca518096f7eccc03e66988ef2eefbeeb03b621d81c4fea5ef55d5ca
-
Size
903KB
-
Sample
240620-f1axds1cnc
-
MD5
2eb93b4c96c94421cbeabb6652d0707f
-
SHA1
af5e86a6dd0632ec040905c68436c05937e31e44
-
SHA256
f2464c122ca518096f7eccc03e66988ef2eefbeeb03b621d81c4fea5ef55d5ca
-
SHA512
74779fb4bf883059bcf926bf151eef1d643abad1037ae8c9b3cb91b4fc43106433c35d4d6c1ce59b6c1911400f3fd305f64d4885e3e1ec090b2244171c8bfa1d
-
SSDEEP
24576:ZAHnh+eWsN3skA4RV1Hom2KXMmHaKZa5j:gh+ZkldoPK8YaKGj
Static task
static1
Behavioral task
behavioral1
Sample
f2464c122ca518096f7eccc03e66988ef2eefbeeb03b621d81c4fea5ef55d5ca.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
f2464c122ca518096f7eccc03e66988ef2eefbeeb03b621d81c4fea5ef55d5ca.exe
Resource
win10v2004-20240611-en
Malware Config
Extracted
revengerat
Marzo26
marzorevenger.duckdns.org:4230
RV_MUTEX-PiGGjjtnxDpn
Targets
-
-
Target
f2464c122ca518096f7eccc03e66988ef2eefbeeb03b621d81c4fea5ef55d5ca
-
Size
903KB
-
MD5
2eb93b4c96c94421cbeabb6652d0707f
-
SHA1
af5e86a6dd0632ec040905c68436c05937e31e44
-
SHA256
f2464c122ca518096f7eccc03e66988ef2eefbeeb03b621d81c4fea5ef55d5ca
-
SHA512
74779fb4bf883059bcf926bf151eef1d643abad1037ae8c9b3cb91b4fc43106433c35d4d6c1ce59b6c1911400f3fd305f64d4885e3e1ec090b2244171c8bfa1d
-
SSDEEP
24576:ZAHnh+eWsN3skA4RV1Hom2KXMmHaKZa5j:gh+ZkldoPK8YaKGj
Score10/10-
Drops startup file
-
Suspicious use of SetThreadContext
-