Overview

overview

10

Static

static

10

a5954354b8...18.exe

windows7-x64

10

a5954354b8...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    a5954354b81a214e4fa472e9080b5b99_JaffaCakes118

  • Size

    361KB

  • MD5

    a5954354b81a214e4fa472e9080b5b99

  • SHA1

    ac7a42f278348a6f7331f467d8eb868bac1e0ccc

  • SHA256

    8672cd173c982a56de4e6e5d83cf2da01e74744a6ffa490aed7ce4a8f2ca0a38

  • SHA512

    239f5acf396a85cb8cdaf8ac2398578e2371a301061d60c781342366cdedc7958b2a5cc31346cbc7377ae61eaea67bee6d9abde1a43513f1b745167e4502e8b3

  • SSDEEP

    1536:asq+QV4rObAdXWpf/y+YTocfZYUXqaJN2DoNE9x6bsI+V7r0XVXNjbHPQym9q:z44rj/TTo8SmN2DoNVj+RAfHHI1s

Score
10/10
upxxtremerat

Malware Config

Signatures

  • Detect XtremeRAT payload 1 IoCs
  • Xtremerat family
    xtremerat
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a5954354b81a214e4fa472e9080b5b99_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections