xtremerat | a0c987560a4521eecc3a21ebe4c777c28827ae883998d2423b62d87dd5bec85a | Triage

Submit
Reports

Overview

overview

Static

static

fab67e18d7...18.exe

windows7-x64

fab67e18d7...18.exe

windows10-2004-x64

Sharing

General

Target

fab67e18d747e947000cad0c7ab98acb_JaffaCakes118
Size

40KB
Sample

241218-js6wms1qdn
MD5

fab67e18d747e947000cad0c7ab98acb
SHA1

f710d606e563df78d7fee811ff98cbb5a4bd5e69
SHA256

a0c987560a4521eecc3a21ebe4c777c28827ae883998d2423b62d87dd5bec85a
SHA512

9adfab09ec79ad7bd96b11a2497bb3682419cfad6739a21ea369e3983c85ca63da1f3bc8894451796f6dee7210709effa67af8e5a11576650fcbb969f9b87ef9
SSDEEP

768:CEohghdN12Ozhiow2Gkm6jc3/pBzNBwIldCzoc:Cv+zMOlw2GkmF3/Blduoc

Score

10^/10

xtremerat discovery persistence rat spyware

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

fab67e18d747e947000cad0c7ab98acb_JaffaCakes118.exe

Resource

win7-20240903-en

xtremerat discovery persistence rat spyware

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

fab67e18d747e947000cad0c7ab98acb_JaffaCakes118.exe

Resource

win10v2004-20241007-en

xtremerat discovery persistence rat spyware

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  fab67e18d747e947000cad0c7ab98acb_JaffaCakes118
- Size
  
  40KB
- MD5
  
  fab67e18d747e947000cad0c7ab98acb
- SHA1
  
  f710d606e563df78d7fee811ff98cbb5a4bd5e69
- SHA256
  
  a0c987560a4521eecc3a21ebe4c777c28827ae883998d2423b62d87dd5bec85a
- SHA512
  
  9adfab09ec79ad7bd96b11a2497bb3682419cfad6739a21ea369e3983c85ca63da1f3bc8894451796f6dee7210709effa67af8e5a11576650fcbb969f9b87ef9
- SSDEEP
  
  768:CEohghdN12Ozhiow2Gkm6jc3/pBzNBwIldCzoc:Cv+zMOlw2GkmF3/Blduoc
Score

10^/10

xtremerat discovery persistence rat spyware
- Detect XtremeRAT payload
- XtremeRAT
  The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
  persistence spyware rat xtremerat
- Xtremerat family
  xtremerat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xtremeratdiscoverypersistenceratspyware

behavioral2

xtremeratdiscoverypersistenceratspyware

© 2018-2024

Terms | Privacy