General
-
Target
b524fa136b68fb4db0e146de32fca9939e626df92bac81bbe3e507cf1734779bN
-
Size
176KB
-
Sample
241107-tpbw7sxrbl
-
MD5
8a408f25a8d9e871120ec94ff075b5d0
-
SHA1
fd8c496b3b4f4f92c700b7b745e247e4f32198c3
-
SHA256
b524fa136b68fb4db0e146de32fca9939e626df92bac81bbe3e507cf1734779b
-
SHA512
d5c73102e5351f6ef3b69701406f728583ea796a0053ac906f3d3caf335a41f9bd083899479e280f0b89fcb8c0ce786d649a021d3a8a6b56bad500b0a6fe1e07
-
SSDEEP
3072:4g2abTB0aeaOVzzRVWcARmp5R8qXlm0NDijVJcevgip7R+60Y6KLj54l3Irml:f2yIPR4eFXxiIT8lvD6KLj5qq
Malware Config
Targets
-
-
Target
b524fa136b68fb4db0e146de32fca9939e626df92bac81bbe3e507cf1734779bN
-
Size
176KB
-
MD5
8a408f25a8d9e871120ec94ff075b5d0
-
SHA1
fd8c496b3b4f4f92c700b7b745e247e4f32198c3
-
SHA256
b524fa136b68fb4db0e146de32fca9939e626df92bac81bbe3e507cf1734779b
-
SHA512
d5c73102e5351f6ef3b69701406f728583ea796a0053ac906f3d3caf335a41f9bd083899479e280f0b89fcb8c0ce786d649a021d3a8a6b56bad500b0a6fe1e07
-
SSDEEP
3072:4g2abTB0aeaOVzzRVWcARmp5R8qXlm0NDijVJcevgip7R+60Y6KLj54l3Irml:f2yIPR4eFXxiIT8lvD6KLj5qq
Score10/10-
Cycbot
Cycbot is a backdoor and trojan written in C++..
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Modifies WinLogon for persistence
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-