General
-
Target
5f470404a9108c26efe2ec0ccdc1dfbe_JaffaCakes118
-
Size
52KB
-
Sample
240720-gmeh4aygqp
-
MD5
5f470404a9108c26efe2ec0ccdc1dfbe
-
SHA1
ce57649fe6fdabc201dd056ce23d050388f95255
-
SHA256
1bbba54a72244b573c902d7442a2bc6f2527b704ec1d313961d714fec2416ab3
-
SHA512
aa6a2b70f4106f0573c0b19698c7aac0a3e77e64f2ce8df8d172e8a69e1979109bd87d2d2b74e1b283b880b4e4c2da01eeea52507768ee787a33178df39ef21e
-
SSDEEP
768:5Wc9quCDQyTZsnw0bCdovh1oMbFoUHS2Nf6KAS7dCSn8:Uc9quCDQTwM9By25cz
Behavioral task
behavioral1
Sample
5f470404a9108c26efe2ec0ccdc1dfbe_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
5f470404a9108c26efe2ec0ccdc1dfbe_JaffaCakes118.exe
Resource
win10v2004-20240709-en
Malware Config
Extracted
xtremerat
intissar.zapto.org
Targets
-
-
Target
5f470404a9108c26efe2ec0ccdc1dfbe_JaffaCakes118
-
Size
52KB
-
MD5
5f470404a9108c26efe2ec0ccdc1dfbe
-
SHA1
ce57649fe6fdabc201dd056ce23d050388f95255
-
SHA256
1bbba54a72244b573c902d7442a2bc6f2527b704ec1d313961d714fec2416ab3
-
SHA512
aa6a2b70f4106f0573c0b19698c7aac0a3e77e64f2ce8df8d172e8a69e1979109bd87d2d2b74e1b283b880b4e4c2da01eeea52507768ee787a33178df39ef21e
-
SSDEEP
768:5Wc9quCDQyTZsnw0bCdovh1oMbFoUHS2Nf6KAS7dCSn8:Uc9quCDQTwM9By25cz
Score10/10-
Detect XtremeRAT payload
-
XtremeRAT
The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
-