General
-
Target
9337af30006f21e889b2ee3e71e1b927373c237406110e3a1292c4783256553f
-
Size
421KB
-
Sample
221201-zwawdaec9s
-
MD5
c654c77753276170476e803c1b3ba771
-
SHA1
b8425f423392fd175bcab3e563571456c4039755
-
SHA256
9337af30006f21e889b2ee3e71e1b927373c237406110e3a1292c4783256553f
-
SHA512
149823743cb1652f0f90adbe61c0a0efd04f36c01ac57c6e826a74a7ee7f151e1dff387c113efc2fcbda37ade1dd2d81d400b583abad78f74b789108ece43a7d
-
SSDEEP
12288:/ki05DoS493ACIl7vI1kiqHNnyVek/a4QmHNX467pDSozj:/krRoIjIbgyLC495467BSozj
Malware Config
Targets
-
-
Target
9337af30006f21e889b2ee3e71e1b927373c237406110e3a1292c4783256553f
-
Size
421KB
-
MD5
c654c77753276170476e803c1b3ba771
-
SHA1
b8425f423392fd175bcab3e563571456c4039755
-
SHA256
9337af30006f21e889b2ee3e71e1b927373c237406110e3a1292c4783256553f
-
SHA512
149823743cb1652f0f90adbe61c0a0efd04f36c01ac57c6e826a74a7ee7f151e1dff387c113efc2fcbda37ade1dd2d81d400b583abad78f74b789108ece43a7d
-
SSDEEP
12288:/ki05DoS493ACIl7vI1kiqHNnyVek/a4QmHNX467pDSozj:/krRoIjIbgyLC495467BSozj
Score10/10-
Detect XtremeRAT payload
-
XtremeRAT
The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Suspicious use of SetThreadContext
-