General

  • Target

    b262b08fa84985debbba341a471ef690

  • Size

    85KB

  • Sample

    240304-r3n3ksdh35

  • MD5

    b262b08fa84985debbba341a471ef690

  • SHA1

    f6730289a52db0569dd41de475593d4470be39ef

  • SHA256

    c45b02f00b2360ec9d2ece60753583bc980e718c1753391b0da4fe4430228dd3

  • SHA512

    81e5f8e2c432571b5cfbabf7e97f108f7dae45c35fdaf2e26acc30915a89cbbed3531871b21eb3cac4a7c5962c0192d758ffdf2c16c316a293063dde19d23d2e

  • SSDEEP

    768:28m1Sq4NQErBsH1tzoisBKQI6dObAG/dq8uW29Ifnca/yyR+P2ujfGiZKPA+7Xoh:Esq+QVorObAdXWpf/y+7ozNwiGfEftog

Malware Config

Extracted

Family

xtremerat

C2

esam2at.no-ip.biz

Targets

    • Target

      b262b08fa84985debbba341a471ef690

    • Size

      85KB

    • MD5

      b262b08fa84985debbba341a471ef690

    • SHA1

      f6730289a52db0569dd41de475593d4470be39ef

    • SHA256

      c45b02f00b2360ec9d2ece60753583bc980e718c1753391b0da4fe4430228dd3

    • SHA512

      81e5f8e2c432571b5cfbabf7e97f108f7dae45c35fdaf2e26acc30915a89cbbed3531871b21eb3cac4a7c5962c0192d758ffdf2c16c316a293063dde19d23d2e

    • SSDEEP

      768:28m1Sq4NQErBsH1tzoisBKQI6dObAG/dq8uW29Ifnca/yyR+P2ujfGiZKPA+7Xoh:Esq+QVorObAdXWpf/y+7ozNwiGfEftog

    • Detect XtremeRAT payload

    • XtremeRAT

      The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.

MITRE ATT&CK Enterprise v15

Tasks