xtremerat | f4109c5f25f9ff390d92173f6faf5bcd8eb24a2e65f4c37a2b207b3749edf721 | Triage

Submit
Reports

Overview

overview

Static

static

f8b1b42c5c...18.exe

windows7-x64

f8b1b42c5c...18.exe

windows10-2004-x64

Sharing

General

Target

f8b1b42c5cc7f2ce1e997b44bf6c2ac4_JaffaCakes118
Size

52KB
Sample

240418-zdyjqafd8z
MD5

f8b1b42c5cc7f2ce1e997b44bf6c2ac4
SHA1

b275ae397723995e2cc2e68097a8be10ea645b6e
SHA256

f4109c5f25f9ff390d92173f6faf5bcd8eb24a2e65f4c37a2b207b3749edf721
SHA512

871a3bc57dee0b46be22ea11a21f514b58fc2fb8acc2bc2301938dc1d10d89748568b8c968d4ab51eef89dedc2ac8355b3dd0019977ab6f03bda00d8be7edd05
SSDEEP

768:5Wc9quCDQyTZsnw0bCdovh1oMbFoUHS2Nf9KAS7dKSWv4f:Uc9quCDQTwM9By259O

Score

10^/10

xtremerat persistence rat spyware

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

f8b1b42c5cc7f2ce1e997b44bf6c2ac4_JaffaCakes118.exe

Resource

win7-20231129-en

xtremerat persistence rat spyware

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

f8b1b42c5cc7f2ce1e997b44bf6c2ac4_JaffaCakes118.exe

Resource

win10v2004-20240412-en

xtremerat persistence rat spyware

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  f8b1b42c5cc7f2ce1e997b44bf6c2ac4_JaffaCakes118
- Size
  
  52KB
- MD5
  
  f8b1b42c5cc7f2ce1e997b44bf6c2ac4
- SHA1
  
  b275ae397723995e2cc2e68097a8be10ea645b6e
- SHA256
  
  f4109c5f25f9ff390d92173f6faf5bcd8eb24a2e65f4c37a2b207b3749edf721
- SHA512
  
  871a3bc57dee0b46be22ea11a21f514b58fc2fb8acc2bc2301938dc1d10d89748568b8c968d4ab51eef89dedc2ac8355b3dd0019977ab6f03bda00d8be7edd05
- SSDEEP
  
  768:5Wc9quCDQyTZsnw0bCdovh1oMbFoUHS2Nf9KAS7dKSWv4f:Uc9quCDQTwM9By259O
Score

10^/10

xtremerat persistence rat spyware
- Detect XtremeRAT payload
- XtremeRAT
  The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
  persistence spyware rat xtremerat
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

xtremeratpersistenceratspyware

behavioral2

xtremeratpersistenceratspyware

© 2018-2024

Terms | Privacy