Overview

overview

10

Static

static

3

7cf3171db6...0N.exe

windows7-x64

10

7cf3171db6...0N.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7cf3171db67f95dafccccdebd657cab606268dc84704dad1f168c533057c1a90N

  • Size

    174KB

  • Sample

    241107-xkhqqsxcrm

  • MD5

    824fe0a451db07cd5d52227e05612600

  • SHA1

    8f1b568d7beb8b67c53b01d34c578aaee4459fe4

  • SHA256

    7cf3171db67f95dafccccdebd657cab606268dc84704dad1f168c533057c1a90

  • SHA512

    21cd6ec5c69153a5351141b84db021caa421daaa24603557cbfc35978d560a3081054e4c62b546e38da08d75ccf8a40efdf93275ae2768684d569b5b39b66162

  • SSDEEP

    3072:sPHCZRKkA3gjhw8LLzkDS17ANWvRD43YtvDM/7rOrp/oOPe3teA:s4KR3gjusv+SJxJs3asarpooedeA

Score
10/10
cycbotbackdoordiscoveryratspywarestealerupx

Malware Config

Targets

    • Target

      7cf3171db67f95dafccccdebd657cab606268dc84704dad1f168c533057c1a90N

    • Size

      174KB

    • MD5

      824fe0a451db07cd5d52227e05612600

    • SHA1

      8f1b568d7beb8b67c53b01d34c578aaee4459fe4

    • SHA256

      7cf3171db67f95dafccccdebd657cab606268dc84704dad1f168c533057c1a90

    • SHA512

      21cd6ec5c69153a5351141b84db021caa421daaa24603557cbfc35978d560a3081054e4c62b546e38da08d75ccf8a40efdf93275ae2768684d569b5b39b66162

    • SSDEEP

      3072:sPHCZRKkA3gjhw8LLzkDS17ANWvRD43YtvDM/7rOrp/oOPe3teA:s4KR3gjusv+SJxJs3asarpooedeA

    Score
    10/10
    cycbotbackdoordiscoveryratspywarestealerupx

    • Cycbot

      Cycbot is a backdoor and trojan written in C++..

      backdoorratcycbot

    • Cycbot family

      cycbot

    • Detects Cycbot payload

      Cycbot is a backdoor and trojan written in C++.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks