xtremerat | fff7860c832e6916dd0b326402a79d9a687979c27f9ffd2be687c2b97a6bd2c6 | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...4d.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_a74bdab6e666b208fd9826fdda179d4d
Size

716KB
Sample

250409-3d3efsvpx3
MD5

a74bdab6e666b208fd9826fdda179d4d
SHA1

d3dd4ddcc526b01ea30e250dd244769d5d9fafcc
SHA256

fff7860c832e6916dd0b326402a79d9a687979c27f9ffd2be687c2b97a6bd2c6
SHA512

2c74d9b5a2a6a72bb69bbd652190ce0c0eb650dcdb955295911111e27b58a01a096868d39599167507e051ac1258f0dadf96227a69bc8f84a448ac1be6abf39c
SSDEEP

12288:KvFRlo7YNQ3LPxez8dFlZqBhF77a+QjUZbvFjMDGKreNLemxV:KiwQEz+8BOMX8GKqFV

Score

10^/10

xtremerat discovery persistence rat spyware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_a74bdab6e666b208fd9826fdda179d4d.exe

Resource

win10v2004-20250314-en

xtremerat discovery persistence rat spyware

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_a74bdab6e666b208fd9826fdda179d4d
- Size
  
  716KB
- MD5
  
  a74bdab6e666b208fd9826fdda179d4d
- SHA1
  
  d3dd4ddcc526b01ea30e250dd244769d5d9fafcc
- SHA256
  
  fff7860c832e6916dd0b326402a79d9a687979c27f9ffd2be687c2b97a6bd2c6
- SHA512
  
  2c74d9b5a2a6a72bb69bbd652190ce0c0eb650dcdb955295911111e27b58a01a096868d39599167507e051ac1258f0dadf96227a69bc8f84a448ac1be6abf39c
- SSDEEP
  
  12288:KvFRlo7YNQ3LPxez8dFlZqBhF77a+QjUZbvFjMDGKreNLemxV:KiwQEz+8BOMX8GKqFV
Score

10^/10

xtremerat discovery persistence rat spyware
- Detect XtremeRAT payload
- XtremeRAT
  The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
  persistence spyware rat xtremerat
- Xtremerat family
  xtremerat
- Suspicious use of NtSetInformationThreadHideFromDebugger
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xtremeratdiscoverypersistenceratspyware

© 2018-2025

Terms | Privacy