General

  • Target

    84009c2088b7b688ff74e322cb7c5cb7

  • Size

    176KB

  • Sample

    240131-kzqzfaaedk

  • MD5

    84009c2088b7b688ff74e322cb7c5cb7

  • SHA1

    559570c215429c653474f8579484cf96232f9f32

  • SHA256

    6293990fd851eb4648db94d00fdde91534a50c693a5179e46bcae18eee7c7bcb

  • SHA512

    3fbe4c97c078671f87a57b15d1781453166dbfa6db60d333630b4ba443a6732ececb7c0a7ecbf188ba169253d706e7408edb73b3b31231cd9e5f84b2561b4d04

  • SSDEEP

    1536:7qc3ERJ+iPyG3iEoWTb4cQHVgOmuTEowrVlCO5S9E6jY5ExGBdIENT06:+TPyG3vvCWxKmBdIENT06

Malware Config

Targets

    • Target

      84009c2088b7b688ff74e322cb7c5cb7

    • Size

      176KB

    • MD5

      84009c2088b7b688ff74e322cb7c5cb7

    • SHA1

      559570c215429c653474f8579484cf96232f9f32

    • SHA256

      6293990fd851eb4648db94d00fdde91534a50c693a5179e46bcae18eee7c7bcb

    • SHA512

      3fbe4c97c078671f87a57b15d1781453166dbfa6db60d333630b4ba443a6732ececb7c0a7ecbf188ba169253d706e7408edb73b3b31231cd9e5f84b2561b4d04

    • SSDEEP

      1536:7qc3ERJ+iPyG3iEoWTb4cQHVgOmuTEowrVlCO5S9E6jY5ExGBdIENT06:+TPyG3vvCWxKmBdIENT06

    • Detect XtremeRAT payload

    • XtremeRAT

      The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks