General
-
Target
502ae462005b7647f8c1a2a683eb5034_JaffaCakes118
-
Size
44KB
-
Sample
240716-1l2f1s1fkm
-
MD5
502ae462005b7647f8c1a2a683eb5034
-
SHA1
7522c6a9e67ced3bff963fc36bd21960229fdd8d
-
SHA256
143ae408ab18bc067f24a5f3dcef29438cd220c63cf80333c339583c5bbbd32a
-
SHA512
0a7608e8a7b7e1ade535d13b00b267bd2c0b5dd5485c4ea80f354a6503e6e2f6485b0e39b43be96af4a12c4150851c9699b5b5315eb364b52b0768972f5aa55f
-
SSDEEP
768:YB4IELmCfJj11ty2GRxvDxLSAHDMl4eSWc+sDCbzX/ZeZnAo:ijgbgxvDkaDM7TXBW
Static task
static1
Behavioral task
behavioral1
Sample
502ae462005b7647f8c1a2a683eb5034_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
502ae462005b7647f8c1a2a683eb5034_JaffaCakes118.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
502ae462005b7647f8c1a2a683eb5034_JaffaCakes118
-
Size
44KB
-
MD5
502ae462005b7647f8c1a2a683eb5034
-
SHA1
7522c6a9e67ced3bff963fc36bd21960229fdd8d
-
SHA256
143ae408ab18bc067f24a5f3dcef29438cd220c63cf80333c339583c5bbbd32a
-
SHA512
0a7608e8a7b7e1ade535d13b00b267bd2c0b5dd5485c4ea80f354a6503e6e2f6485b0e39b43be96af4a12c4150851c9699b5b5315eb364b52b0768972f5aa55f
-
SSDEEP
768:YB4IELmCfJj11ty2GRxvDxLSAHDMl4eSWc+sDCbzX/ZeZnAo:ijgbgxvDkaDM7TXBW
Score10/10-
XtremeRAT
The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
-
Suspicious use of SetThreadContext
-