xtremerat | 62918ba74587703b42e6e86b6ffdf540d1893e09fbe187b49194b97644601135 | Triage

Submit
Reports

Overview

overview

Static

static

2d74a7ccf0...18.exe

windows7-x64

2d74a7ccf0...18.exe

windows10-2004-x64

Sharing

General

Target

2d74a7ccf04088e33d0c99c3f80597d5_JaffaCakes118
Size

65KB
Sample

241009-jl12tazcjc
MD5

2d74a7ccf04088e33d0c99c3f80597d5
SHA1

b4051954a44cf409f778a818347c8d8f20dc2a9c
SHA256

62918ba74587703b42e6e86b6ffdf540d1893e09fbe187b49194b97644601135
SHA512

f925c90c804cb220a79baaad332d97ef90ab972b14407e7a543ddc88265df071db131d2da3e42dd4257a1f433f014ec0d4c37a12bebd712ae5b9fe8432f47325
SSDEEP

768:Aem1Sq4NQErBsH1tzoisBKQI6dObAG/dq8uW29Ifnca/yyR+P2ujf9iZKPA+7Xon:4sq+QV4rObAdXWpf/yl7ozNwiC4X

Score

10^/10

xtremerat discovery persistence rat spyware

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2d74a7ccf04088e33d0c99c3f80597d5_JaffaCakes118.exe

Resource

win7-20240903-en

xtremerat discovery persistence rat spyware

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

2d74a7ccf04088e33d0c99c3f80597d5_JaffaCakes118.exe

Resource

win10v2004-20241007-en

xtremerat discovery persistence rat spyware

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  2d74a7ccf04088e33d0c99c3f80597d5_JaffaCakes118
- Size
  
  65KB
- MD5
  
  2d74a7ccf04088e33d0c99c3f80597d5
- SHA1
  
  b4051954a44cf409f778a818347c8d8f20dc2a9c
- SHA256
  
  62918ba74587703b42e6e86b6ffdf540d1893e09fbe187b49194b97644601135
- SHA512
  
  f925c90c804cb220a79baaad332d97ef90ab972b14407e7a543ddc88265df071db131d2da3e42dd4257a1f433f014ec0d4c37a12bebd712ae5b9fe8432f47325
- SSDEEP
  
  768:Aem1Sq4NQErBsH1tzoisBKQI6dObAG/dq8uW29Ifnca/yyR+P2ujf9iZKPA+7Xon:4sq+QV4rObAdXWpf/yl7ozNwiC4X
Score

10^/10

xtremerat discovery persistence rat spyware
- Detect XtremeRAT payload
- XtremeRAT
  The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
  persistence spyware rat xtremerat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xtremeratdiscoverypersistenceratspyware

behavioral2

xtremeratdiscoverypersistenceratspyware

© 2018-2025

Terms | Privacy