Extracted

• • Target

    JaffaCakes118_d21a9de892014e784492d644343271fd

  • Size

    36KB

  • MD5

    d21a9de892014e784492d644343271fd

  • SHA1

    ea6c715df19372604c03331b21d54f2faf9a7023

  • SHA256

    5aca68fe75d6011c3ec20041b95a717ffd9476b754d980e403af39d539f6d25d

  • SHA512

    bdfc18fc4c6a3d951448ac93e91aa9fa7d68ea1895757e01c0ee29121246b1a63a3435c90927341389538f7a85e4140b1dcf7a0eb04efe7c7f9d3e575823a571

  • SSDEEP

    768:yMuijtHf5g7/IIG3bGcYDBSvFIWuePQtv66lvagwvJ:vNW71rcYDAWeotvXliVR

  Score

  10^/10

  xtremeratdiscoverypersistenceratspywareupx

  • Detect XtremeRAT payload

  • XtremeRAT

    The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.

    persistencespywareratxtremerat

  • Xtremerat family

    xtremerat

  • Downloads MZ/PE file

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2