General
-
Target
dff84b6eb3be40791b0d0c616928e425
-
Size
77KB
-
Sample
240326-yprd4sdh7x
-
MD5
dff84b6eb3be40791b0d0c616928e425
-
SHA1
4f04da60d134e8c1731266b0667aa2b6d33a2ea2
-
SHA256
958d630a5b4cedf313a81685ab3b3485c18e4dea69746c2907f3dfce511b11ca
-
SHA512
b132aea97e7941d40266e3a43345b951b202d00761cc718c0ec7b46a69f7f727166a5558df7144a7174e671f3c1cf88b41748dbe41349ba393f6d6fd22ce1c95
-
SSDEEP
1536:aNW71rcYDAWeotvXlI3s+bHbKO6vGeJhuYObXy+2mkv/XjcmAVnZjwI13jUj:aNW7dEvotvXq3s+jAD3uFbf2ZHBAV1T+
Behavioral task
behavioral1
Sample
dff84b6eb3be40791b0d0c616928e425.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
dff84b6eb3be40791b0d0c616928e425.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
xtremerat
l7n-alrhel.no-ip.biz
타霹9⓫谀128l7n-alrhel.no-ip.biz
Targets
-
-
Target
dff84b6eb3be40791b0d0c616928e425
-
Size
77KB
-
MD5
dff84b6eb3be40791b0d0c616928e425
-
SHA1
4f04da60d134e8c1731266b0667aa2b6d33a2ea2
-
SHA256
958d630a5b4cedf313a81685ab3b3485c18e4dea69746c2907f3dfce511b11ca
-
SHA512
b132aea97e7941d40266e3a43345b951b202d00761cc718c0ec7b46a69f7f727166a5558df7144a7174e671f3c1cf88b41748dbe41349ba393f6d6fd22ce1c95
-
SSDEEP
1536:aNW71rcYDAWeotvXlI3s+bHbKO6vGeJhuYObXy+2mkv/XjcmAVnZjwI13jUj:aNW7dEvotvXq3s+jAD3uFbf2ZHBAV1T+
Score10/10-
Detect XtremeRAT payload
-
XtremeRAT
The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
-