General

  • Target

    769370122212c757f05fbeb6ef36c8d8

  • Size

    33KB

  • Sample

    240126-gqem9sfea7

  • MD5

    769370122212c757f05fbeb6ef36c8d8

  • SHA1

    5bd03fa1c6bdab2f4cd5a0d3dcfab796ef2b4527

  • SHA256

    e3541e1701acc54fc7975a8aac9db6f174726e49de968d7f44800eaf4474560d

  • SHA512

    89f16f5b7426602cde345abde626ff666b8953be3ef9a8b0449aa298f99bbc3bc62ed4387a01b6977509d53dbab5f42cf8231827d1fae79c932203c843b93e54

  • SSDEEP

    768:aMuijtHf5g7/IIG3bGcYDBSvFIWuePQDGEsgk5ajpHA5P:HNW71rcYDAWeoDrsPCU

Malware Config

Extracted

Family

xtremerat

C2

d1w32323.zapto.org

Targets

    • Target

      769370122212c757f05fbeb6ef36c8d8

    • Size

      33KB

    • MD5

      769370122212c757f05fbeb6ef36c8d8

    • SHA1

      5bd03fa1c6bdab2f4cd5a0d3dcfab796ef2b4527

    • SHA256

      e3541e1701acc54fc7975a8aac9db6f174726e49de968d7f44800eaf4474560d

    • SHA512

      89f16f5b7426602cde345abde626ff666b8953be3ef9a8b0449aa298f99bbc3bc62ed4387a01b6977509d53dbab5f42cf8231827d1fae79c932203c843b93e54

    • SSDEEP

      768:aMuijtHf5g7/IIG3bGcYDBSvFIWuePQDGEsgk5ajpHA5P:HNW71rcYDAWeoDrsPCU

    • Detect XtremeRAT payload

    • XtremeRAT

      The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks