Sneed-Reactivity/yara-mikesxrs/kevthehermit/Xtreme.yar

rule Xtreme
{
	meta:
		author = " Kevin Breen <kevin@techanarchy.net>"
		date = "2014/04"
		ref = "http://malwareconfig.com/stats/Xtreme"
		maltype = "Remote Access Trojan"
		filetype = "exe"
		ver = "2.9, 3.1, 3.2, 3.5"

	strings:
		$a = "XTREME" wide
		$b = "ServerStarted" wide
		$c = "XtremeKeylogger" wide
		$d = "x.html" wide
		$e = "Xtreme RAT" wide

	condition:
		all of them
}
OMG ISTG PLS WORK RED PILL :red_circle: :pill: 2024-07-25 12:43:35 -05:00			`rule Xtreme`
			`{`
			`meta:`
			`author = " Kevin Breen <kevin@techanarchy.net>"`
			`date = "2014/04"`
			`ref = "http://malwareconfig.com/stats/Xtreme"`
			`maltype = "Remote Access Trojan"`
			`filetype = "exe"`
			`ver = "2.9, 3.1, 3.2, 3.5"`

			`strings:`
			`$a = "XTREME" wide`
			`$b = "ServerStarted" wide`
			`$c = "XtremeKeylogger" wide`
			`$d = "x.html" wide`
			`$e = "Xtreme RAT" wide`

			`condition:`
			`all of them`
			`}`