xtremerat | cd58bb7983fa8ae067b4ef1707f8fbbe1172a390641de3817de71421563cbe61 | Triage

Submit
Reports

Overview

overview

Static

static

3

9b1c6545f1...18.exe

windows7-x64

9b1c6545f1...18.exe

windows10-2004-x64

Sharing

General

Target

9b1c6545f194eca59176e4422c552b60_JaffaCakes118
Size

79KB
Sample

241125-nakmxatnez
MD5

9b1c6545f194eca59176e4422c552b60
SHA1

934b4f8810aeeedc90bfaaa85971e7352497015c
SHA256

cd58bb7983fa8ae067b4ef1707f8fbbe1172a390641de3817de71421563cbe61
SHA512

d861d4ddf58f6bb9fec1d6bc4c292c90dd6648294effaac8477073b420faef0c9dba722b162babdd6ea5eca4b3954faa899e8d60a2d7d31082b6e22746f3a03f
SSDEEP

1536:7oheWGJmqdfxUtLQrciTxoPvcm/tgDi7sw9ZW:7oh8mqdaerh1oPvn1cShW

Score

10^/10

xtremerat discovery persistence rat spyware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

9b1c6545f194eca59176e4422c552b60_JaffaCakes118.exe

Resource

win7-20241010-en

xtremerat discovery persistence rat spyware

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

9b1c6545f194eca59176e4422c552b60_JaffaCakes118.exe

Resource

win10v2004-20241007-en

xtremerat discovery persistence rat spyware

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

xtremerat

C2

khdt1.zapto.org

Targets

- Target
  
  9b1c6545f194eca59176e4422c552b60_JaffaCakes118
- Size
  
  79KB
- MD5
  
  9b1c6545f194eca59176e4422c552b60
- SHA1
  
  934b4f8810aeeedc90bfaaa85971e7352497015c
- SHA256
  
  cd58bb7983fa8ae067b4ef1707f8fbbe1172a390641de3817de71421563cbe61
- SHA512
  
  d861d4ddf58f6bb9fec1d6bc4c292c90dd6648294effaac8477073b420faef0c9dba722b162babdd6ea5eca4b3954faa899e8d60a2d7d31082b6e22746f3a03f
- SSDEEP
  
  1536:7oheWGJmqdfxUtLQrciTxoPvcm/tgDi7sw9ZW:7oh8mqdaerh1oPvn1cShW
Score

10^/10

xtremerat discovery persistence rat spyware
- Detect XtremeRAT payload
- XtremeRAT
  The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
  persistence spyware rat xtremerat
- Xtremerat family
  xtremerat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xtremeratdiscoverypersistenceratspyware

behavioral2

xtremeratdiscoverypersistenceratspyware

© 2018-2024

Terms | Privacy