xtremerat

General

Target

8174a96006f2acd6ae72b8e8b1657690_JaffaCakes118
Size

49KB
Sample

241031-d3pgfsyfka
MD5

8174a96006f2acd6ae72b8e8b1657690
SHA1

df00f51fb1bbbe8a8f0726411cc9650906ee1553
SHA256

7de3054bae0aa73e5ceebca435aea90f62b6a3401b989bb5118bbaf89fb33def
SHA512

5a0486afc6e218583694fddb210c23d2591c038a8c6ee57226eddf1aaf20f16e139f0d617e54900a78061fe59aad88917d1487b83c662738f945bd7c7f9afd7d
SSDEEP

1536:zD5gnDtYxE0moj5O/rDjvmKILPmqV0s2koOqjeN:vaD8EJJDD7jm5Cq

Score

10^/10

Malware Config

Extracted

Family

xtremerat

C2

franco1.no-ip.org

Targets

- Target
  
  8174a96006f2acd6ae72b8e8b1657690_JaffaCakes118
- Size
  
  49KB
- MD5
  
  8174a96006f2acd6ae72b8e8b1657690
- SHA1
  
  df00f51fb1bbbe8a8f0726411cc9650906ee1553
- SHA256
  
  7de3054bae0aa73e5ceebca435aea90f62b6a3401b989bb5118bbaf89fb33def
- SHA512
  
  5a0486afc6e218583694fddb210c23d2591c038a8c6ee57226eddf1aaf20f16e139f0d617e54900a78061fe59aad88917d1487b83c662738f945bd7c7f9afd7d
- SSDEEP
  
  1536:zD5gnDtYxE0moj5O/rDjvmKILPmqV0s2koOqjeN:vaD8EJJDD7jm5Cq
Score

10^/10

xtremerat discovery persistence rat spyware upx
- Detect XtremeRAT payload
- XtremeRAT
  The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
  persistence spyware rat xtremerat
- Xtremerat family
  xtremerat
- Suspicious use of SetThreadContext
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1

T1082

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Detect XtremeRAT payload

Xtremerat family

Suspicious use of SetThreadContext

UPX packed file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2