xtremerat | 95057371eab64ab4eba52a4df8cd3ef2d4e96b1b1a09a27ad17e4b5d20517e64 | Triage

Submit
Reports

Overview

overview

Static

static

JaffaCakes...67.exe

windows7-x64

JaffaCakes...67.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_8e4ae0d65c61a1e7b754c1cdf6627567
Size

44KB
Sample

250204-bac7lsyrc1
MD5

8e4ae0d65c61a1e7b754c1cdf6627567
SHA1

9806e1cc628b0c176feb10b64243736386881efa
SHA256

95057371eab64ab4eba52a4df8cd3ef2d4e96b1b1a09a27ad17e4b5d20517e64
SHA512

c98bbcf0f9f4ca1f3e0e15f7c8694bad52f0b10b2874972b798c148cc62fd9fd799ea792d3c56304640cb63c797dbd426cbbc3ea1e127d5b98c2c3c5925a1bca
SSDEEP

768:nD++tjFqTPkAlfzth1lr6annsmTq8uvm2DfOTwYPIWzoOL:DNRUHlrr1lr6anHTZuvm2buQKoOL

Score

10^/10

xtremerat discovery persistence rat spyware

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_8e4ae0d65c61a1e7b754c1cdf6627567.exe

Resource

win7-20240903-en

xtremerat discovery persistence rat spyware

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_8e4ae0d65c61a1e7b754c1cdf6627567.exe

Resource

win10v2004-20250129-en

xtremerat discovery persistence rat spyware

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_8e4ae0d65c61a1e7b754c1cdf6627567
- Size
  
  44KB
- MD5
  
  8e4ae0d65c61a1e7b754c1cdf6627567
- SHA1
  
  9806e1cc628b0c176feb10b64243736386881efa
- SHA256
  
  95057371eab64ab4eba52a4df8cd3ef2d4e96b1b1a09a27ad17e4b5d20517e64
- SHA512
  
  c98bbcf0f9f4ca1f3e0e15f7c8694bad52f0b10b2874972b798c148cc62fd9fd799ea792d3c56304640cb63c797dbd426cbbc3ea1e127d5b98c2c3c5925a1bca
- SSDEEP
  
  768:nD++tjFqTPkAlfzth1lr6annsmTq8uvm2DfOTwYPIWzoOL:DNRUHlrr1lr6anHTZuvm2buQKoOL
Score

10^/10

xtremerat discovery persistence rat spyware
- Detect XtremeRAT payload
- XtremeRAT
  The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
  persistence spyware rat xtremerat
- Xtremerat family
  xtremerat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xtremeratdiscoverypersistenceratspyware

behavioral2

xtremeratdiscoverypersistenceratspyware

© 2018-2025

Terms | Privacy