xtremerat | 28635d1d8ebeb032808f730224a68fa40ddeafb26f9dcce88001e20082fcd841 | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...1b.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_a8fa175cdf041bb3f45a31d572996d1b
Size

303KB
Sample

250410-h248qstyew
MD5

a8fa175cdf041bb3f45a31d572996d1b
SHA1

117176478b1020a42c5f2695cd81587c2b325774
SHA256

28635d1d8ebeb032808f730224a68fa40ddeafb26f9dcce88001e20082fcd841
SHA512

510ef8d6f8a7e8c0433a7943845c555a4f5e2dce91b1752756dd227dbf0807c794390b620dd08eeadbb063d86398f79e5238c1ae8baf657b410fc29a46f0cad9
SSDEEP

6144:YddI2vnadRVxZY3gVOq4rbgZC4TyQOI5JgpcvqNplc4BOzH:OBvaFxZYwVHT0Iw5pLsH

Score

10^/10

xtremerat discovery persistence rat spyware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_a8fa175cdf041bb3f45a31d572996d1b.exe

Resource

win10v2004-20250313-en

xtremerat discovery persistence rat spyware

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Extracted

Family

xtremerat

C2

scctor.no-ip.biz

Targets

- Target
  
  JaffaCakes118_a8fa175cdf041bb3f45a31d572996d1b
- Size
  
  303KB
- MD5
  
  a8fa175cdf041bb3f45a31d572996d1b
- SHA1
  
  117176478b1020a42c5f2695cd81587c2b325774
- SHA256
  
  28635d1d8ebeb032808f730224a68fa40ddeafb26f9dcce88001e20082fcd841
- SHA512
  
  510ef8d6f8a7e8c0433a7943845c555a4f5e2dce91b1752756dd227dbf0807c794390b620dd08eeadbb063d86398f79e5238c1ae8baf657b410fc29a46f0cad9
- SSDEEP
  
  6144:YddI2vnadRVxZY3gVOq4rbgZC4TyQOI5JgpcvqNplc4BOzH:OBvaFxZYwVHT0Iw5pLsH
Score

10^/10

xtremerat discovery persistence rat spyware
- Detect XtremeRAT payload
- XtremeRAT
  The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
  persistence spyware rat xtremerat
- Xtremerat family
  xtremerat
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xtremeratdiscoverypersistenceratspyware

© 2018-2025

Terms | Privacy