xtremerat | d12fad378198738df0e31161bc79ae651f71267df0a2c3fe080075b9cb773621 | Triage

Submit
Reports

Overview

overview

Static

static

JaffaCakes...7b.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_a3d08e369300bafde1be5f3cc7a7f87b
Size

33KB
Sample

250409-h14ktasqy9
MD5

a3d08e369300bafde1be5f3cc7a7f87b
SHA1

32fd274b3eb474fe2951f13d367d42bf17926184
SHA256

d12fad378198738df0e31161bc79ae651f71267df0a2c3fe080075b9cb773621
SHA512

3ebf313b24459681b0e97b774910026d9fd9ff99354dae95ff54ef4d487f1ca37f4c28a525c37be88fa4ddf68179847157981678d6a564f5604013065a4f4010
SSDEEP

768:MMuijtHf5g7/IIG3bGcYDBSvFIWuePQtv66lzDYSrY:FNW71rcYDAWeotvXlzcS

Score

10^/10

xtremerat discovery persistence rat spyware upx

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_a3d08e369300bafde1be5f3cc7a7f87b.exe

Resource

win10v2004-20250314-en

xtremerat discovery persistence rat spyware upx

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Extracted

Family

xtremerat

C2

msngr.sytes.net

Targets

- Target
  
  JaffaCakes118_a3d08e369300bafde1be5f3cc7a7f87b
- Size
  
  33KB
- MD5
  
  a3d08e369300bafde1be5f3cc7a7f87b
- SHA1
  
  32fd274b3eb474fe2951f13d367d42bf17926184
- SHA256
  
  d12fad378198738df0e31161bc79ae651f71267df0a2c3fe080075b9cb773621
- SHA512
  
  3ebf313b24459681b0e97b774910026d9fd9ff99354dae95ff54ef4d487f1ca37f4c28a525c37be88fa4ddf68179847157981678d6a564f5604013065a4f4010
- SSDEEP
  
  768:MMuijtHf5g7/IIG3bGcYDBSvFIWuePQtv66lzDYSrY:FNW71rcYDAWeotvXlzcS
Score

10^/10

xtremerat discovery persistence rat spyware upx
- Detect XtremeRAT payload
- XtremeRAT
  The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
  persistence spyware rat xtremerat
- Xtremerat family
  xtremerat
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xtremeratdiscoverypersistenceratspywareupx

© 2018-2025

Terms | Privacy