xtremerat | af4567a340e66f614469c0aa93ee3dd3b528b2a528d322ef26cb5a6413bc678f | Triage

Submit
Reports

Overview

overview

Static

static

JaffaCakes...7e.exe

windows7-x64

JaffaCakes...7e.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_32f8b371bf04cf9ebd1f8d6e5b0e4b7e
Size

65KB
Sample

250114-bv7a7asphx
MD5

32f8b371bf04cf9ebd1f8d6e5b0e4b7e
SHA1

6e92c27d7540328b79add4ddcd2db373378d0183
SHA256

af4567a340e66f614469c0aa93ee3dd3b528b2a528d322ef26cb5a6413bc678f
SHA512

7214b96def4546b5610e3925c6e6f4e7b58e2f28e97efc3542efa1913d34e39b9ae7a2d47fdaffef3f78530ef725b72af3c926d909fdf93d197ef38c3d7f82b0
SSDEEP

768:e8m1Sq4NQErBsH1tzoisBKQI6dObAG/dqOXHsoAx5JXrUqLOY0pYKnA+7PoNwiz0:ssq+QV4rObAdNoAf5UqiYmlArNwOozVx

Score

10^/10

xtremerat discovery persistence rat spyware

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_32f8b371bf04cf9ebd1f8d6e5b0e4b7e.exe

Resource

win7-20240903-en

xtremerat discovery persistence rat spyware

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_32f8b371bf04cf9ebd1f8d6e5b0e4b7e.exe

Resource

win10v2004-20241007-en

xtremerat discovery persistence rat spyware

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_32f8b371bf04cf9ebd1f8d6e5b0e4b7e
- Size
  
  65KB
- MD5
  
  32f8b371bf04cf9ebd1f8d6e5b0e4b7e
- SHA1
  
  6e92c27d7540328b79add4ddcd2db373378d0183
- SHA256
  
  af4567a340e66f614469c0aa93ee3dd3b528b2a528d322ef26cb5a6413bc678f
- SHA512
  
  7214b96def4546b5610e3925c6e6f4e7b58e2f28e97efc3542efa1913d34e39b9ae7a2d47fdaffef3f78530ef725b72af3c926d909fdf93d197ef38c3d7f82b0
- SSDEEP
  
  768:e8m1Sq4NQErBsH1tzoisBKQI6dObAG/dqOXHsoAx5JXrUqLOY0pYKnA+7PoNwiz0:ssq+QV4rObAdNoAf5UqiYmlArNwOozVx
Score

10^/10

xtremerat discovery persistence rat spyware
- Detect XtremeRAT payload
- XtremeRAT
  The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
  persistence spyware rat xtremerat
- Xtremerat family
  xtremerat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xtremeratdiscoverypersistenceratspyware

behavioral2

xtremeratdiscoverypersistenceratspyware

© 2018-2025

Terms | Privacy