General

  • Target

    83682db650c4b4f88fe413e414886505

  • Size

    65KB

  • Sample

    240131-eq2fxsbdb4

  • MD5

    83682db650c4b4f88fe413e414886505

  • SHA1

    0d331bd239638f45ca78269903bcf49bd94c84b0

  • SHA256

    ef744e1c4bbbd583c7fbd184187531830ba0decdab7ace0a8d69f3c0d38ce90a

  • SHA512

    82811e512c3c8b58033e948d56a37a124bdd88b7a5a0361b5ae8ebcf6b8aa6ec131369573b613c3733f1d2a5f81c36cda65c76356c85db787fc070637ff6d0ed

  • SSDEEP

    768:o8m1Sq4NQErBsH1tzoisBKQI6dObAG/dqOXHsoAx5JXrUqLOY0pYKnA+7PoNwh9y:qsq+QV4rObAdNoAf5UqiYmlArNwhM

Malware Config

Extracted

Family

xtremerat

C2

hp-hp.no-ip.info

Targets

    • Target

      83682db650c4b4f88fe413e414886505

    • Size

      65KB

    • MD5

      83682db650c4b4f88fe413e414886505

    • SHA1

      0d331bd239638f45ca78269903bcf49bd94c84b0

    • SHA256

      ef744e1c4bbbd583c7fbd184187531830ba0decdab7ace0a8d69f3c0d38ce90a

    • SHA512

      82811e512c3c8b58033e948d56a37a124bdd88b7a5a0361b5ae8ebcf6b8aa6ec131369573b613c3733f1d2a5f81c36cda65c76356c85db787fc070637ff6d0ed

    • SSDEEP

      768:o8m1Sq4NQErBsH1tzoisBKQI6dObAG/dqOXHsoAx5JXrUqLOY0pYKnA+7PoNwh9y:qsq+QV4rObAdNoAf5UqiYmlArNwhM

    • Detect XtremeRAT payload

    • XtremeRAT

      The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.

MITRE ATT&CK Enterprise v15

Tasks