Overview

overview

10

Static

static

10

40cfb98a49...18.exe

windows7-x64

10

40cfb98a49...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    40cfb98a492bc887ae1e5aed7aa5f184_JaffaCakes118

  • Size

    400KB

  • MD5

    40cfb98a492bc887ae1e5aed7aa5f184

  • SHA1

    2e485de356f958b6bf9eaf7e98ae2d42675fe684

  • SHA256

    6847aa8cfb666661614dfb94c7625102891ca228fb138409d88f43db4537872b

  • SHA512

    0409c1c39621f729c75f16c31b83bacd5429cf6767f606b44ec013f9a2c200b497a19e530f22f7de47fac3e0813a15ddce56a92d38c78979d5b2b00984b971ad

  • SSDEEP

    3072:Y44rj/toaaO5FoxwXWBBZZdXWBBZZJszMoPxW:jSLxLXWBBZZdXWBBZZNoPxW

Score
10/10
upxxtremerat

Malware Config

Signatures

  • Detect XtremeRAT payload 1 IoCs
  • Xtremerat family
    xtremerat
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 40cfb98a492bc887ae1e5aed7aa5f184_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections