General

  • Target

    5f470404a9108c26efe2ec0ccdc1dfbe_JaffaCakes118

  • Size

    52KB

  • Sample

    240720-gmeh4aygqp

  • MD5

    5f470404a9108c26efe2ec0ccdc1dfbe

  • SHA1

    ce57649fe6fdabc201dd056ce23d050388f95255

  • SHA256

    1bbba54a72244b573c902d7442a2bc6f2527b704ec1d313961d714fec2416ab3

  • SHA512

    aa6a2b70f4106f0573c0b19698c7aac0a3e77e64f2ce8df8d172e8a69e1979109bd87d2d2b74e1b283b880b4e4c2da01eeea52507768ee787a33178df39ef21e

  • SSDEEP

    768:5Wc9quCDQyTZsnw0bCdovh1oMbFoUHS2Nf6KAS7dCSn8:Uc9quCDQTwM9By25cz

Malware Config

Extracted

Family

xtremerat

C2

intissar.zapto.org

Targets

    • Target

      5f470404a9108c26efe2ec0ccdc1dfbe_JaffaCakes118

    • Size

      52KB

    • MD5

      5f470404a9108c26efe2ec0ccdc1dfbe

    • SHA1

      ce57649fe6fdabc201dd056ce23d050388f95255

    • SHA256

      1bbba54a72244b573c902d7442a2bc6f2527b704ec1d313961d714fec2416ab3

    • SHA512

      aa6a2b70f4106f0573c0b19698c7aac0a3e77e64f2ce8df8d172e8a69e1979109bd87d2d2b74e1b283b880b4e4c2da01eeea52507768ee787a33178df39ef21e

    • SSDEEP

      768:5Wc9quCDQyTZsnw0bCdovh1oMbFoUHS2Nf6KAS7dCSn8:Uc9quCDQTwM9By25cz

    • Detect XtremeRAT payload

    • XtremeRAT

      The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.

MITRE ATT&CK Enterprise v15

Tasks