General

  • Target

    173a9121f7713037c6500f589658c7e5_JaffaCakes118

  • Size

    19KB

  • MD5

    173a9121f7713037c6500f589658c7e5

  • SHA1

    419c0c55eecc8ff679059e5049bb23ee2049a995

  • SHA256

    ef272a7bcdd2c0d0f7953a1688e2a396ea5abedf6298a7141e111603b821b8c4

  • SHA512

    41d16b8574fcebb99be294fdf6fe89e311262048bf02e99d5d577b6a295abacb0ee9c778c6530ab85d2758ff3a962b67e958e5342163266cf6b8c83ca28de270

  • SSDEEP

    384:OHkbvZrowDq6mpVIRTMT6rk9H0UNCITiY07P8aketR:/cwDVmjWMuruUUNlO7P5ku

Score
10/10

Malware Config

Signatures

  • Detect XtremeRAT payload 1 IoCs
  • Xtremerat family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 173a9121f7713037c6500f589658c7e5_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections