General

  • Target

    8197f2b865c3f9ac4fbbcf1490ce943a

  • Size

    318KB

  • Sample

    240130-f737hshdh4

  • MD5

    8197f2b865c3f9ac4fbbcf1490ce943a

  • SHA1

    f2613c599762f938a47ab48a09af7d7740b1f861

  • SHA256

    78dd9db0f618e3811d47b28a7f046cd9f623ff0ccef123c4f95bdeb73ea11994

  • SHA512

    2989e645f033c1e2376d07e0f0e95426bf68be21a1be50110393df5cc9cea4fec51a6880e08d173c2b557e9c634e24bf4993a22c352e1142ed19172da39e3d20

  • SSDEEP

    6144:E1F3l6QAHe8fAIwgw4lAAx9BhmroAiHnxcx8J5uybal9C/0dEIIiHVVYpos:Erl6QAHe8fAIwgw4lAAx9BhmroAiHqxs

Malware Config

Extracted

Family

xtremerat

C2

lepra.zapto.org

Targets

    • Target

      8197f2b865c3f9ac4fbbcf1490ce943a

    • Size

      318KB

    • MD5

      8197f2b865c3f9ac4fbbcf1490ce943a

    • SHA1

      f2613c599762f938a47ab48a09af7d7740b1f861

    • SHA256

      78dd9db0f618e3811d47b28a7f046cd9f623ff0ccef123c4f95bdeb73ea11994

    • SHA512

      2989e645f033c1e2376d07e0f0e95426bf68be21a1be50110393df5cc9cea4fec51a6880e08d173c2b557e9c634e24bf4993a22c352e1142ed19172da39e3d20

    • SSDEEP

      6144:E1F3l6QAHe8fAIwgw4lAAx9BhmroAiHnxcx8J5uybal9C/0dEIIiHVVYpos:Erl6QAHe8fAIwgw4lAAx9BhmroAiHqxs

    • Detect XtremeRAT payload

    • XtremeRAT

      The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.

MITRE ATT&CK Enterprise v15

Tasks