General
-
Target
27dd1ede4a89ae764b84fa764dee090b_JaffaCakes118
-
Size
91KB
-
Sample
240706-j5jlwasaqp
-
MD5
27dd1ede4a89ae764b84fa764dee090b
-
SHA1
128b73d827ad1f71ffd6df30ae4b70e06c62a8f7
-
SHA256
e73df65bf7af1a1f7c187dfd31ef9505e8e878a5c1a4a473f927dc33e0658eee
-
SHA512
d816c790ebe96f172dbde894cd5b93a8201fa27c97b72b1260694b1cc0315713def26c35a1cb303c3ad5331823b940671a548e8e8daa9c553426befe8c9e199a
-
SSDEEP
1536:ssq+QV4rObAdXWpf/y+7ozNwijAoi2UPhtoAoi2UPhtpoam:p44rj/Wodk3NPD3NP9oP
Behavioral task
behavioral1
Sample
27dd1ede4a89ae764b84fa764dee090b_JaffaCakes118.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
27dd1ede4a89ae764b84fa764dee090b_JaffaCakes118.exe
Resource
win10v2004-20240704-en
Malware Config
Extracted
xtremerat
jor-hack.no-ip.info
Targets
-
-
Target
27dd1ede4a89ae764b84fa764dee090b_JaffaCakes118
-
Size
91KB
-
MD5
27dd1ede4a89ae764b84fa764dee090b
-
SHA1
128b73d827ad1f71ffd6df30ae4b70e06c62a8f7
-
SHA256
e73df65bf7af1a1f7c187dfd31ef9505e8e878a5c1a4a473f927dc33e0658eee
-
SHA512
d816c790ebe96f172dbde894cd5b93a8201fa27c97b72b1260694b1cc0315713def26c35a1cb303c3ad5331823b940671a548e8e8daa9c553426befe8c9e199a
-
SSDEEP
1536:ssq+QV4rObAdXWpf/y+7ozNwijAoi2UPhtoAoi2UPhtpoam:p44rj/Wodk3NPD3NP9oP
Score10/10-
Detect XtremeRAT payload
-
XtremeRAT
The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.
-