General

  • Target

    b5f740640892016c39c52917884d96ac

  • Size

    85KB

  • Sample

    240305-3s3c1ach8s

  • MD5

    b5f740640892016c39c52917884d96ac

  • SHA1

    c21a00d8e148bbf2785fba59e471d6d46ec080c1

  • SHA256

    4657eeb8919fbfb63dff779bf12e6c365a4e88e2380126c77cbaf369f61e47f1

  • SHA512

    f98a5393e330394f880170ba12550707fe8b7d327ce3199d300aab630c5e201da72f1c7cb6fe85aab4ef0ccd32b124cfa0ab66574572e5a6ed9daea8fe0bdf71

  • SSDEEP

    768:28m1Sq4NQErBsH10zoisBKQI6dObAG/dq8uW29Ifnca/yyR+P2ujfGiZKPA+7Xoh:Esq+QVrrObAdXWpf/y+7ozNwiGfEftog

Malware Config

Extracted

Family

xtremerat

C2

esam2at.no-ip.biz

Targets

    • Target

      b5f740640892016c39c52917884d96ac

    • Size

      85KB

    • MD5

      b5f740640892016c39c52917884d96ac

    • SHA1

      c21a00d8e148bbf2785fba59e471d6d46ec080c1

    • SHA256

      4657eeb8919fbfb63dff779bf12e6c365a4e88e2380126c77cbaf369f61e47f1

    • SHA512

      f98a5393e330394f880170ba12550707fe8b7d327ce3199d300aab630c5e201da72f1c7cb6fe85aab4ef0ccd32b124cfa0ab66574572e5a6ed9daea8fe0bdf71

    • SSDEEP

      768:28m1Sq4NQErBsH10zoisBKQI6dObAG/dq8uW29Ifnca/yyR+P2ujfGiZKPA+7Xoh:Esq+QVrrObAdXWpf/y+7ozNwiGfEftog

    • Detect XtremeRAT payload

    • XtremeRAT

      The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.

MITRE ATT&CK Enterprise v15

Tasks