General

  • Target

    80b70b0fcb0775a4b49571b38d56f1b0

  • Size

    64KB

  • Sample

    240129-ykejrahec7

  • MD5

    80b70b0fcb0775a4b49571b38d56f1b0

  • SHA1

    c390330be5daa5c1bf9e381cb275ab6ac7f907ab

  • SHA256

    541ddf1c3ae0993af7c164b876b0f772e86b6c1227b789bfcb92f629443d20f0

  • SHA512

    18a1e034af2dd69ca841daa9834e210973f06d957ddce192a19669458c4c2b280920342e6f8f06b63a7eafc3ad2386b78460db8764967bd1ea42e1242fd64765

  • SSDEEP

    768:98m1Sq4NQErBsH1tzoisBKQI6dObAG/dqOXHsoAx5pXrUq/6Y7BKnA+7PoNw8SzO:5sq+QV4rObAdNoAfZUqyYkArNw8eox

Malware Config

Extracted

Family

xtremerat

C2

by2olak.no-ip.biz

Targets

    • Target

      80b70b0fcb0775a4b49571b38d56f1b0

    • Size

      64KB

    • MD5

      80b70b0fcb0775a4b49571b38d56f1b0

    • SHA1

      c390330be5daa5c1bf9e381cb275ab6ac7f907ab

    • SHA256

      541ddf1c3ae0993af7c164b876b0f772e86b6c1227b789bfcb92f629443d20f0

    • SHA512

      18a1e034af2dd69ca841daa9834e210973f06d957ddce192a19669458c4c2b280920342e6f8f06b63a7eafc3ad2386b78460db8764967bd1ea42e1242fd64765

    • SSDEEP

      768:98m1Sq4NQErBsH1tzoisBKQI6dObAG/dqOXHsoAx5pXrUq/6Y7BKnA+7PoNw8SzO:5sq+QV4rObAdNoAfZUqyYkArNw8eox

    • Detect XtremeRAT payload

    • XtremeRAT

      The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.

MITRE ATT&CK Enterprise v15

Tasks