XtremeRAT

Description

A publicly available RAT.

(FireEye) XtremeRAT allows an attacker to:

• Interact with the victim via a remote shell • Upload/download files • Interact with the registry • Manipulate running processes and services • Capture images of the desktop • Record from connected devices, such as a webcam or microphone

Moreover, during the build process, the attacker can specify whether to include keylogging and USB infection functions.

Names

Name
XtremeRAT
Xtreme RAT
ExtRat

Type

Backdoor
Keylogger
Info stealer
Exfiltration

Information

https://www.fireeye.com/blog/threat-research/2014/02/xtremerat-nuisance-or-threat.html
https://community.rsa.com/community/products/netwitness/blog/2017/08/02/malspam-delivers-xtreme-rat-8-1-2017
https://www.symantec.com/connect/blogs/colombians-major-target-email-campaigns-delivering-xtreme-rat
https://malware.lu/articles/2012/07/22/xtreme-rat-analysis.html

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.extreme_rat

Alienvault Otx

https://otx.alienvault.com/browse/pulses?q=tag:xtremerat

Other Information

Uuid

7886a052-0559-45f4-92ac-44366fe0791f

Last Card Change

2022-12-28

Threat Intelligence Garden

Explorer

XtremeRAT

XtremeRAT

Description

Names

Category

Type

Information

Malpedia

Alienvault Otx

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks