General
-
Target
9311b14b478c3c60e04e806960c58f73_JaffaCakes118
-
Size
174KB
-
Sample
241124-hcqdaatrgp
-
MD5
9311b14b478c3c60e04e806960c58f73
-
SHA1
3a19ecc1dce54ffd892f9ce900482f1df9198f14
-
SHA256
17664145227c0fd867345333448b0f13228d2214c2e7299918aa133e28e1c5db
-
SHA512
766740b601c2ac935ce354318672b50ec9669a7fa377df0030da3aebdd24e961d0ac7c0ab30bbbbed1bb14423d7a5bf6e821a462a7417cce301d6273532f1836
-
SSDEEP
3072:epzzsJBolVdQbqRiicVMRzuEWmRlp5hRCsRpX04bvbNjdP4a5ZDOWC:m/eBoHdQbqRpcVMNufmRl2cpX04vNjhu
Malware Config
Targets
-
-
Target
9311b14b478c3c60e04e806960c58f73_JaffaCakes118
-
Size
174KB
-
MD5
9311b14b478c3c60e04e806960c58f73
-
SHA1
3a19ecc1dce54ffd892f9ce900482f1df9198f14
-
SHA256
17664145227c0fd867345333448b0f13228d2214c2e7299918aa133e28e1c5db
-
SHA512
766740b601c2ac935ce354318672b50ec9669a7fa377df0030da3aebdd24e961d0ac7c0ab30bbbbed1bb14423d7a5bf6e821a462a7417cce301d6273532f1836
-
SSDEEP
3072:epzzsJBolVdQbqRiicVMRzuEWmRlp5hRCsRpX04bvbNjdP4a5ZDOWC:m/eBoHdQbqRpcVMNufmRl2cpX04vNjhu
Score10/10-
Cycbot
Cycbot is a backdoor and trojan written in C++..
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-