xtremerat | 9dac6047f227bd2da1ebcf60c6a1af935053ac0a8dd84f80cc6ddb96aedf426b | Triage

Submit
Reports

Overview

overview

Static

static

JaffaCakes...f7.exe

windows7-x64

JaffaCakes...f7.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_077b86a92515c610ba345a2a78d0dff7
Size

30KB
Sample

250219-yry7qsxrdr
MD5

077b86a92515c610ba345a2a78d0dff7
SHA1

687e814f89cfe19616d14b69a1d32eef06bf835e
SHA256

9dac6047f227bd2da1ebcf60c6a1af935053ac0a8dd84f80cc6ddb96aedf426b
SHA512

c5ff593744b85ea115b6fbb9fff232a76d4edaeab845ebd594c575d69baaa2e30fb99e458a963e0e6ad0bd07c2d89f77a7d6a726750d52e22e2fc69524d7bff9
SSDEEP

768:I4l/50VTed7NY+K3LeJPd2lVMG7Rxrl4U2sJD7St8w:iTyu7YOMqRvBD7Sa

Score

10^/10

xtremerat discovery persistence rat spyware upx

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_077b86a92515c610ba345a2a78d0dff7.exe

Resource

win7-20240903-en

xtremerat discovery persistence rat spyware upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_077b86a92515c610ba345a2a78d0dff7.exe

Resource

win10v2004-20250217-en

xtremerat discovery persistence rat spyware upx

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_077b86a92515c610ba345a2a78d0dff7
- Size
  
  30KB
- MD5
  
  077b86a92515c610ba345a2a78d0dff7
- SHA1
  
  687e814f89cfe19616d14b69a1d32eef06bf835e
- SHA256
  
  9dac6047f227bd2da1ebcf60c6a1af935053ac0a8dd84f80cc6ddb96aedf426b
- SHA512
  
  c5ff593744b85ea115b6fbb9fff232a76d4edaeab845ebd594c575d69baaa2e30fb99e458a963e0e6ad0bd07c2d89f77a7d6a726750d52e22e2fc69524d7bff9
- SSDEEP
  
  768:I4l/50VTed7NY+K3LeJPd2lVMG7Rxrl4U2sJD7St8w:iTyu7YOMqRvBD7Sa
Score

10^/10

xtremerat discovery persistence rat spyware upx
- Detect XtremeRAT payload
- XtremeRAT
  The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
  persistence spyware rat xtremerat
- Xtremerat family
  xtremerat
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xtremeratdiscoverypersistenceratspywareupx

behavioral2

xtremeratdiscoverypersistenceratspywareupx

© 2018-2025

Terms | Privacy