General
-
Target
96289ea18cdd60e6124fd906f1c2c4bf_JaffaCakes118
-
Size
169KB
-
Sample
241124-vz8vcswrcp
-
MD5
96289ea18cdd60e6124fd906f1c2c4bf
-
SHA1
4a64fd8328c8df136a376c0f6823566e95baf268
-
SHA256
bdb3d9408eb9771a9d2b3deea13b806346706aeab76bf48f1d4b66a3d97e0bbc
-
SHA512
9dfc3671b46d66eb259def4006fcc391969bc516bb02a0150fabdb444e1eb3e31ce89471a48876ae12214ba629f0ccc0cb5185967680dbc23066a4a0b726f32b
-
SSDEEP
3072:Y8pozB+B4MCVc52FbxAfddXhbSByeXiVrBGTmE1H1L5uS+m43+ku/:Y8poz0iMgc52QddXhbSGrIH1L5uSk3s
Malware Config
Targets
-
-
Target
96289ea18cdd60e6124fd906f1c2c4bf_JaffaCakes118
-
Size
169KB
-
MD5
96289ea18cdd60e6124fd906f1c2c4bf
-
SHA1
4a64fd8328c8df136a376c0f6823566e95baf268
-
SHA256
bdb3d9408eb9771a9d2b3deea13b806346706aeab76bf48f1d4b66a3d97e0bbc
-
SHA512
9dfc3671b46d66eb259def4006fcc391969bc516bb02a0150fabdb444e1eb3e31ce89471a48876ae12214ba629f0ccc0cb5185967680dbc23066a4a0b726f32b
-
SSDEEP
3072:Y8pozB+B4MCVc52FbxAfddXhbSByeXiVrBGTmE1H1L5uS+m43+ku/:Y8poz0iMgc52QddXhbSGrIH1L5uSk3s
Score10/10-
Cycbot
Cycbot is a backdoor and trojan written in C++..
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-