xtremerat | cd939590f397e8abf0b8ca583b24fc1ca6b60dd3b1819ab276b88765a0d159c6 | Triage

Submit
Reports

Overview

overview

Static

static

JaffaCakes...51.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_a1b38ffb3a38e9673cafa6cc77800951
Size

64KB
Sample

250408-1gj16ssjw8
MD5

a1b38ffb3a38e9673cafa6cc77800951
SHA1

7f6bdfdb95e203633e868efae3671b40b29147d8
SHA256

cd939590f397e8abf0b8ca583b24fc1ca6b60dd3b1819ab276b88765a0d159c6
SHA512

5b19a905a4c86de3fcd086a1b774e59cf6d76de798fe4c77cf11c6b0e416deeecfc2924007b5f49f98433daa618ff73c41539fbb503f62a07bd3b1d5114696ef
SSDEEP

1536:psq+QV4rObAdNoAf5UqyYY/ArNw8vFkoXAM:o44rOBDAVkox

Score

10^/10

xtremerat discovery persistence rat spyware

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_a1b38ffb3a38e9673cafa6cc77800951.exe

Resource

win10v2004-20250314-en

xtremerat discovery persistence rat spyware

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Extracted

Family

xtremerat

C2

x40.no-ip.biz

Targets

- Target
  
  JaffaCakes118_a1b38ffb3a38e9673cafa6cc77800951
- Size
  
  64KB
- MD5
  
  a1b38ffb3a38e9673cafa6cc77800951
- SHA1
  
  7f6bdfdb95e203633e868efae3671b40b29147d8
- SHA256
  
  cd939590f397e8abf0b8ca583b24fc1ca6b60dd3b1819ab276b88765a0d159c6
- SHA512
  
  5b19a905a4c86de3fcd086a1b774e59cf6d76de798fe4c77cf11c6b0e416deeecfc2924007b5f49f98433daa618ff73c41539fbb503f62a07bd3b1d5114696ef
- SSDEEP
  
  1536:psq+QV4rObAdNoAf5UqyYY/ArNw8vFkoXAM:o44rOBDAVkox
Score

10^/10

xtremerat discovery persistence rat spyware
- Detect XtremeRAT payload
- XtremeRAT
  The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
  persistence spyware rat xtremerat
- Xtremerat family
  xtremerat
behavioral1

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xtremeratdiscoverypersistenceratspyware

© 2018-2025

Terms | Privacy