xtremerat | 6666196038cf17c14411a6454d95bc8cefff45dace6d51463c1eb3ff7030ee2a | Triage

Submit
Reports

Overview

overview

Static

static

67402dce9e...18.exe

windows7-x64

67402dce9e...18.exe

windows10-2004-x64

Sharing

General

Target

67402dce9e6e691a7850b24cae777905_JaffaCakes118
Size

62KB
Sample

240723-mrjaqssdll
MD5

67402dce9e6e691a7850b24cae777905
SHA1

54050730b5b7c67113a0c704229935141d2f747a
SHA256

6666196038cf17c14411a6454d95bc8cefff45dace6d51463c1eb3ff7030ee2a
SHA512

8a6af978723f8929e1baa7918449d6d64bff222ac45f7b349bb0b1bd5a49e8723a3c6701670ead4fb7f904ddf61ac32f5391f333a90ac5c5163c8d3625c09f8d
SSDEEP

1536:ZT8qDqQ8K9MK3tGjbNwPZ6oAXHWul5NX3h:dqMyKdcZXHWw1

Score

10^/10

xtremerat persistence rat spyware

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

67402dce9e6e691a7850b24cae777905_JaffaCakes118.exe

Resource

win7-20240708-en

xtremerat persistence rat spyware

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

67402dce9e6e691a7850b24cae777905_JaffaCakes118.exe

Resource

win10v2004-20240709-en

xtremerat persistence rat spyware

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

xtremerat

C2

deh.no-ip.info

Targets

- Target
  
  67402dce9e6e691a7850b24cae777905_JaffaCakes118
- Size
  
  62KB
- MD5
  
  67402dce9e6e691a7850b24cae777905
- SHA1
  
  54050730b5b7c67113a0c704229935141d2f747a
- SHA256
  
  6666196038cf17c14411a6454d95bc8cefff45dace6d51463c1eb3ff7030ee2a
- SHA512
  
  8a6af978723f8929e1baa7918449d6d64bff222ac45f7b349bb0b1bd5a49e8723a3c6701670ead4fb7f904ddf61ac32f5391f333a90ac5c5163c8d3625c09f8d
- SSDEEP
  
  1536:ZT8qDqQ8K9MK3tGjbNwPZ6oAXHWul5NX3h:dqMyKdcZXHWw1
Score

10^/10

xtremerat persistence rat spyware
- Detect XtremeRAT payload
- XtremeRAT
  The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
  persistence spyware rat xtremerat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xtremeratpersistenceratspyware

behavioral2

xtremeratpersistenceratspyware

© 2018-2025

Terms | Privacy