xtremerat | 2f6f4758acce236009a652e1e2771ff32d518ced86235716d8df607ee46b51c4 | Triage

Submit
Reports

Overview

overview

Static

static

JaffaCakes...f7.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_b14d7c5d230e245cb7acaa347f4adbf7
Size

225KB
Sample

250412-gjsxbayshy
MD5

b14d7c5d230e245cb7acaa347f4adbf7
SHA1

15edef2f393333f588e87daea98350d2160f34ad
SHA256

2f6f4758acce236009a652e1e2771ff32d518ced86235716d8df607ee46b51c4
SHA512

7c6d162dc24c1a3e8959364e3e0ea3bbb78de88e9337962bc044aacc91fa007f5388af68e3f235be29481c4facf69afd2e058d4e4069b882b708614a77c6ad5a
SSDEEP

1536:msq+QV4rObAdXWpf/y+7ozNwib4SYtVp3eOce/rVV9JvEpqhxq/lFmEc30o8K:n44rj/WodbmVj/ZVLhMW0oX

Score

10^/10

xtremerat discovery persistence rat spyware

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_b14d7c5d230e245cb7acaa347f4adbf7.exe

Resource

win10v2004-20250410-en

xtremerat discovery persistence rat spyware

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

xtremerat

C2

totty46.no-ip.org

Targets

- Target
  
  JaffaCakes118_b14d7c5d230e245cb7acaa347f4adbf7
- Size
  
  225KB
- MD5
  
  b14d7c5d230e245cb7acaa347f4adbf7
- SHA1
  
  15edef2f393333f588e87daea98350d2160f34ad
- SHA256
  
  2f6f4758acce236009a652e1e2771ff32d518ced86235716d8df607ee46b51c4
- SHA512
  
  7c6d162dc24c1a3e8959364e3e0ea3bbb78de88e9337962bc044aacc91fa007f5388af68e3f235be29481c4facf69afd2e058d4e4069b882b708614a77c6ad5a
- SSDEEP
  
  1536:msq+QV4rObAdXWpf/y+7ozNwib4SYtVp3eOce/rVV9JvEpqhxq/lFmEc30o8K:n44rj/WodbmVj/ZVLhMW0oX
Score

10^/10

xtremerat discovery persistence rat spyware
- Detect XtremeRAT payload
- XtremeRAT
  The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
  persistence spyware rat xtremerat
- Xtremerat family
  xtremerat
behavioral1

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

xtremeratdiscoverypersistenceratspyware

© 2018-2025

Terms | Privacy