General
-
Target
5d759a968e4b6546f59cf5dbc1da7824_JaffaCakes118
-
Size
62KB
-
Sample
241019-tkfdtsvbne
-
MD5
5d759a968e4b6546f59cf5dbc1da7824
-
SHA1
661d7c212e287312ce45a1c8f96efc852d26d4c2
-
SHA256
8fe1705dc898bfbd5eaeb792f18c2b6bfdedaebb3778c98a6bcd5646fb31d71a
-
SHA512
8502fee4451f286694182ee712c24f9ebf7cd3fea77d68530145ac90f8aca29c5b9d9f874ef469e187d006eae82286309973c684e65718ea3616e04b8fa97ffb
-
SSDEEP
1536:9T8qDqQ9U9MK3tGjbNwPZ6XAXHWzl5NX3w:JqryKdceXHWZM
Behavioral task
behavioral1
Sample
5d759a968e4b6546f59cf5dbc1da7824_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
5d759a968e4b6546f59cf5dbc1da7824_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
xtremerat
11hack11.no-ip.biz
11hack1.no-ip.biz
䪤焙.jouba.no-ip.biz
Targets
-
-
Target
5d759a968e4b6546f59cf5dbc1da7824_JaffaCakes118
-
Size
62KB
-
MD5
5d759a968e4b6546f59cf5dbc1da7824
-
SHA1
661d7c212e287312ce45a1c8f96efc852d26d4c2
-
SHA256
8fe1705dc898bfbd5eaeb792f18c2b6bfdedaebb3778c98a6bcd5646fb31d71a
-
SHA512
8502fee4451f286694182ee712c24f9ebf7cd3fea77d68530145ac90f8aca29c5b9d9f874ef469e187d006eae82286309973c684e65718ea3616e04b8fa97ffb
-
SSDEEP
1536:9T8qDqQ9U9MK3tGjbNwPZ6XAXHWzl5NX3w:JqryKdceXHWZM
Score10/10-
Detect XtremeRAT payload
-
XtremeRAT
The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
-