General

  • Target

    b0cc1d172b96d8578830df6e94664ae6

  • Size

    168KB

  • Sample

    240304-a14a2sdh35

  • MD5

    b0cc1d172b96d8578830df6e94664ae6

  • SHA1

    733393fcaf348c56c42f527db3e4ce9dfa1855bd

  • SHA256

    00c68867803ca8dacf7dd34c71cc52af6233513ea2ff5008da00fa5f2328381f

  • SHA512

    071c46c4b98a37cec5f866d43f73c12f53edc86a5c4649bee96cb9dd0b121aa79f2b0fd81f26ad06546c2bf419722a58ebb705644fe4876734e06e6d300a6159

  • SSDEEP

    3072:/cY2MnUstI5Ag7O40TqzMwvmjw5emJYSu+RvNgCaveFq1NX+h3Zd:/v2mt+/7OdThwus5emGSnFeNXwD

Malware Config

Targets

    • Target

      b0cc1d172b96d8578830df6e94664ae6

    • Size

      168KB

    • MD5

      b0cc1d172b96d8578830df6e94664ae6

    • SHA1

      733393fcaf348c56c42f527db3e4ce9dfa1855bd

    • SHA256

      00c68867803ca8dacf7dd34c71cc52af6233513ea2ff5008da00fa5f2328381f

    • SHA512

      071c46c4b98a37cec5f866d43f73c12f53edc86a5c4649bee96cb9dd0b121aa79f2b0fd81f26ad06546c2bf419722a58ebb705644fe4876734e06e6d300a6159

    • SSDEEP

      3072:/cY2MnUstI5Ag7O40TqzMwvmjw5emJYSu+RvNgCaveFq1NX+h3Zd:/v2mt+/7OdThwus5emGSnFeNXwD

    • Detect XtremeRAT payload

    • XtremeRAT

      The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks