xtremerat | f0b0e539193cca91b3685d634e214b23ec8b0b79c9aeb2f4273190c49024dbc4 | Triage

Submit
Reports

Overview

overview

Static

static

190418164e...18.exe

windows7-x64

190418164e...18.exe

windows10-2004-x64

Sharing

General

Target

190418164eb0e71a5dbc48eab4bd9e6f_JaffaCakes118
Size

62KB
Sample

241006-v2l4dawcpm
MD5

190418164eb0e71a5dbc48eab4bd9e6f
SHA1

0ad57b643d8caeea70aaf2a91df064ee03e96470
SHA256

f0b0e539193cca91b3685d634e214b23ec8b0b79c9aeb2f4273190c49024dbc4
SHA512

1d3ebc149704dbbf8e2106773cabfd137ceacc323cf71c88089b32b9818af6ead538e4350770a5a0564ba59a92e1f45eca71ba219e1ae56387fd6ebe7396a82e
SSDEEP

1536:tT8qDqQdU9MK3tGjbNwPZ6XAXHWzl+NX3w:5qLyKdceXHWZN

Score

10^/10

xtremerat discovery persistence rat spyware

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

190418164eb0e71a5dbc48eab4bd9e6f_JaffaCakes118.exe

Resource

win7-20240903-en

xtremerat discovery persistence rat spyware

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

190418164eb0e71a5dbc48eab4bd9e6f_JaffaCakes118.exe

Resource

win10v2004-20240802-en

xtremerat discovery persistence rat spyware

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

xtremerat

C2

11hack11.no-ip.biz

11hack1.no-ip.biz

䪤焙.jouba.no-ip.biz

Targets

- Target
  
  190418164eb0e71a5dbc48eab4bd9e6f_JaffaCakes118
- Size
  
  62KB
- MD5
  
  190418164eb0e71a5dbc48eab4bd9e6f
- SHA1
  
  0ad57b643d8caeea70aaf2a91df064ee03e96470
- SHA256
  
  f0b0e539193cca91b3685d634e214b23ec8b0b79c9aeb2f4273190c49024dbc4
- SHA512
  
  1d3ebc149704dbbf8e2106773cabfd137ceacc323cf71c88089b32b9818af6ead538e4350770a5a0564ba59a92e1f45eca71ba219e1ae56387fd6ebe7396a82e
- SSDEEP
  
  1536:tT8qDqQdU9MK3tGjbNwPZ6XAXHWzl+NX3w:5qLyKdceXHWZN
Score

10^/10

xtremerat discovery persistence rat spyware
- Detect XtremeRAT payload
- XtremeRAT
  The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
  persistence spyware rat xtremerat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xtremeratdiscoverypersistenceratspyware

behavioral2

xtremeratdiscoverypersistenceratspyware

© 2018-2025

Terms | Privacy