Overview

overview

10

Static

static

10

JaffaCakes...d1.exe

windows7-x64

10

JaffaCakes...d1.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_699a2bb58f886eb09ee31cbfeb284cd1

  • Size

    33KB

  • Sample

    250116-d1bskszjew

  • MD5

    699a2bb58f886eb09ee31cbfeb284cd1

  • SHA1

    f3a5879d4364082d3197b9d6f77e916d598f4bbc

  • SHA256

    1bacd61205f753af7e91e206f2b65030099d1908187d83453fceadafd9feda11

  • SHA512

    67a8576c4a801f87018fdf8de22467a0610488611985ff29c7dac239c7766c211f888cc325a199cc58ad81fd4dc003ee8018ab32374b66d1786fc81e67a6fe23

  • SSDEEP

    768:nMuijtHf5g7/IIG3bGcYDBSvFIWuePQDGEsgCBP5XD9pTr+b:MNW71rcYDAWeoDrsDNFD9pf

Score
10/10
xtremeratdiscoverypersistenceratspywareupx

Malware Config

Targets

    • Target

      JaffaCakes118_699a2bb58f886eb09ee31cbfeb284cd1

    • Size

      33KB

    • MD5

      699a2bb58f886eb09ee31cbfeb284cd1

    • SHA1

      f3a5879d4364082d3197b9d6f77e916d598f4bbc

    • SHA256

      1bacd61205f753af7e91e206f2b65030099d1908187d83453fceadafd9feda11

    • SHA512

      67a8576c4a801f87018fdf8de22467a0610488611985ff29c7dac239c7766c211f888cc325a199cc58ad81fd4dc003ee8018ab32374b66d1786fc81e67a6fe23

    • SSDEEP

      768:nMuijtHf5g7/IIG3bGcYDBSvFIWuePQDGEsgCBP5XD9pTr+b:MNW71rcYDAWeoDrsDNFD9pf

    Score
    10/10
    xtremeratdiscoverypersistenceratspywareupx

    • Detect XtremeRAT payload

    • XtremeRAT

      The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.

      persistencespywareratxtremerat

    • Xtremerat family

      xtremerat

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks