General
-
Target
ed742c6938d9c3af1f6700a67fe93749_JaffaCakes118
-
Size
461KB
-
Sample
240411-pzlryaeh6t
-
MD5
ed742c6938d9c3af1f6700a67fe93749
-
SHA1
e915c34940a1e61daaef926e9f130cb42e002ddb
-
SHA256
089f0f9825c7fee5ac4900324a732dfffecb1beebc1cba295a83b2553f801074
-
SHA512
addd52e8e395ed963f89905b633ea8de98e0df035ba00ffe4b200b3b970e3405d9f740a0468dadf8e56c20fd9b18801fba0f0329552db0963dbf92d03321e5c3
-
SSDEEP
12288:Tn/9MaqxKMybYI+1Q4NNuE2XZ29qxVjPk7DkN+:7lMaqxPIWf3qDgH
Static task
static1
Behavioral task
behavioral1
Sample
ed742c6938d9c3af1f6700a67fe93749_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
ed742c6938d9c3af1f6700a67fe93749_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
xtremerat
lepra.zapto.org
Targets
-
-
Target
ed742c6938d9c3af1f6700a67fe93749_JaffaCakes118
-
Size
461KB
-
MD5
ed742c6938d9c3af1f6700a67fe93749
-
SHA1
e915c34940a1e61daaef926e9f130cb42e002ddb
-
SHA256
089f0f9825c7fee5ac4900324a732dfffecb1beebc1cba295a83b2553f801074
-
SHA512
addd52e8e395ed963f89905b633ea8de98e0df035ba00ffe4b200b3b970e3405d9f740a0468dadf8e56c20fd9b18801fba0f0329552db0963dbf92d03321e5c3
-
SSDEEP
12288:Tn/9MaqxKMybYI+1Q4NNuE2XZ29qxVjPk7DkN+:7lMaqxPIWf3qDgH
Score10/10-
Detect XtremeRAT payload
-
XtremeRAT
The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
-