General

  • Target

    JaffaCakes118_79913ff3bb4a002af222d21620f1db4e

  • Size

    65KB

  • Sample

    250316-kg6l6szlt6

  • MD5

    79913ff3bb4a002af222d21620f1db4e

  • SHA1

    eed45a969fa92517516469bd5ad9e70d53abb6a6

  • SHA256

    b6b6c85e36edfdffbac05317798f37af8aafb74a97190e39595f8b1e4a4c3593

  • SHA512

    cf2d033cb4fb9023f5814882ff0998ca423ef8ac58483f14dffc1c8771ca4050a3f181991fb35c981f584820d00ad8ef02248c364966681b70f9ea237ac3656b

  • SSDEEP

    1536:esq+QV4rObAdNoAf5UqiYmBArNwWAokAc:P44rORxAPAoe

Malware Config

Targets

    • Target

      JaffaCakes118_79913ff3bb4a002af222d21620f1db4e

    • Size

      65KB

    • MD5

      79913ff3bb4a002af222d21620f1db4e

    • SHA1

      eed45a969fa92517516469bd5ad9e70d53abb6a6

    • SHA256

      b6b6c85e36edfdffbac05317798f37af8aafb74a97190e39595f8b1e4a4c3593

    • SHA512

      cf2d033cb4fb9023f5814882ff0998ca423ef8ac58483f14dffc1c8771ca4050a3f181991fb35c981f584820d00ad8ef02248c364966681b70f9ea237ac3656b

    • SSDEEP

      1536:esq+QV4rObAdNoAf5UqiYmBArNwWAokAc:P44rORxAPAoe

    • Detect XtremeRAT payload

    • XtremeRAT

      The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.

    • Xtremerat family

MITRE ATT&CK Enterprise v15

Tasks