General
-
Target
54bf738d4c7b3be0dc774be24661426c_JaffaCakes118
-
Size
33KB
-
Sample
240518-pwsq3sca29
-
MD5
54bf738d4c7b3be0dc774be24661426c
-
SHA1
cc940e82e0290d4884056e1d8282f82a18752b7d
-
SHA256
f90827388b49fda103b04ef93b808141c0552ab974b9aaabd02c22bb0de61ca7
-
SHA512
4331cfbe432f0ed1e4e16bccd6b17c99d7064ef4b91b17f39b34dcc89d129917c0d5a2a781c7948a666dae1b4a8389988daf28160fda5bca0a649e0436a426f2
-
SSDEEP
768:KMuijtHf5g7/IIG3bGcYDBSvFIWuePQtv66lOYVJ2/PbHiSIr:3NW71rcYDAWeotvXlXwi
Behavioral task
behavioral1
Sample
54bf738d4c7b3be0dc774be24661426c_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
54bf738d4c7b3be0dc774be24661426c_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Extracted
xtremerat
hacku11.ddns.net
Targets
-
-
Target
54bf738d4c7b3be0dc774be24661426c_JaffaCakes118
-
Size
33KB
-
MD5
54bf738d4c7b3be0dc774be24661426c
-
SHA1
cc940e82e0290d4884056e1d8282f82a18752b7d
-
SHA256
f90827388b49fda103b04ef93b808141c0552ab974b9aaabd02c22bb0de61ca7
-
SHA512
4331cfbe432f0ed1e4e16bccd6b17c99d7064ef4b91b17f39b34dcc89d129917c0d5a2a781c7948a666dae1b4a8389988daf28160fda5bca0a649e0436a426f2
-
SSDEEP
768:KMuijtHf5g7/IIG3bGcYDBSvFIWuePQtv66lOYVJ2/PbHiSIr:3NW71rcYDAWeotvXlXwi
Score10/10-
Detect XtremeRAT payload
-
XtremeRAT
The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
-