General
-
Target
3f8aeff96d4f4a221dc993d9170a1035f858717b8952fc44362bb9441365408f
-
Size
903KB
-
Sample
240621-zj2tbsvgpm
-
MD5
3a3117d3400eac473049edc4bba602b0
-
SHA1
900127321c1b6f0ecad1f7f2df2fb5379d401127
-
SHA256
3f8aeff96d4f4a221dc993d9170a1035f858717b8952fc44362bb9441365408f
-
SHA512
e23e74d863d7a673d2c03571476ea6b3a70fcf765b76c531bac84381d9a259eb7ef520d27e43226d064d7a2b41c2763c97ec55d5d5a74a3e3a0d202c5b5d1103
-
SSDEEP
24576:ZAHnh+eWsN3skA4RV1Hom2KXMmHaKZa5l:gh+ZkldoPK8YaKGl
Static task
static1
Behavioral task
behavioral1
Sample
3f8aeff96d4f4a221dc993d9170a1035f858717b8952fc44362bb9441365408f.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
3f8aeff96d4f4a221dc993d9170a1035f858717b8952fc44362bb9441365408f.exe
Resource
win10v2004-20240508-en
Malware Config
Extracted
revengerat
Marzo26
marzorevenger.duckdns.org:4230
RV_MUTEX-PiGGjjtnxDpn
Targets
-
-
Target
3f8aeff96d4f4a221dc993d9170a1035f858717b8952fc44362bb9441365408f
-
Size
903KB
-
MD5
3a3117d3400eac473049edc4bba602b0
-
SHA1
900127321c1b6f0ecad1f7f2df2fb5379d401127
-
SHA256
3f8aeff96d4f4a221dc993d9170a1035f858717b8952fc44362bb9441365408f
-
SHA512
e23e74d863d7a673d2c03571476ea6b3a70fcf765b76c531bac84381d9a259eb7ef520d27e43226d064d7a2b41c2763c97ec55d5d5a74a3e3a0d202c5b5d1103
-
SSDEEP
24576:ZAHnh+eWsN3skA4RV1Hom2KXMmHaKZa5l:gh+ZkldoPK8YaKGl
Score10/10-
Drops startup file
-
Suspicious use of SetThreadContext
-