xtremerat | a0c544481d1c1749eed2ef7c3256e2fdafec557443d0d7e400bdab29605851fc | Triage

Sharing

General

Target

JaffaCakes118_61aac7ac3ac939e43e2ee5935ffb3330
Size

45KB
Sample

250102-a7yn5swmel
MD5

61aac7ac3ac939e43e2ee5935ffb3330
SHA1

afbb2566976762671db8e44a7908117e07c89110
SHA256

a0c544481d1c1749eed2ef7c3256e2fdafec557443d0d7e400bdab29605851fc
SHA512

e48cda468dfa1d62ed66440fedf23fe9d9d7e4744988717cfad16061ce467d75e68055e77c4db5fa43c76378b5b7386c9bef65f734b5d3cb5c8515dc5a0a076a
SSDEEP

768:2BM+tjFY9BRiY6UsDzKgEFQX3klYrAnsPhwfugf08Czo5J:aHR+8PEFQX3kZsP4gXo5J

Score

10^/10

xtremerat discovery persistence rat spyware

Malware Config

Targets

- Target
  
  JaffaCakes118_61aac7ac3ac939e43e2ee5935ffb3330
- Size
  
  45KB
- MD5
  
  61aac7ac3ac939e43e2ee5935ffb3330
- SHA1
  
  afbb2566976762671db8e44a7908117e07c89110
- SHA256
  
  a0c544481d1c1749eed2ef7c3256e2fdafec557443d0d7e400bdab29605851fc
- SHA512
  
  e48cda468dfa1d62ed66440fedf23fe9d9d7e4744988717cfad16061ce467d75e68055e77c4db5fa43c76378b5b7386c9bef65f734b5d3cb5c8515dc5a0a076a
- SSDEEP
  
  768:2BM+tjFY9BRiY6UsDzKgEFQX3klYrAnsPhwfugf08Czo5J:aHR+8PEFQX3kZsP4gXo5J
Score

10^/10

xtremerat persistence rat spyware discovery
- XtremeRAT
  The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
  persistence spyware rat xtremerat
- Xtremerat family
  xtremerat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xtremeratpersistenceratspyware

behavioral2