General
-
Target
9a21f539a03d2d64d33791728696654a_JaffaCakes118
-
Size
179KB
-
Sample
241125-jkbersskgn
-
MD5
9a21f539a03d2d64d33791728696654a
-
SHA1
793eaf63d1d0e621202d4f04cff1b938c2ca50ec
-
SHA256
bb81ee2f0879f603691a75602a39e0fbede9bcc98a326489c981ffa3c27c8077
-
SHA512
710137a8615dc802ab206ac70f6b5234440a035720314d4ca7254e7adc475c532367c059a7f93e1f289fef63fd4c3bcb2be312bef67ab8d786c040ddd3714e10
-
SSDEEP
3072:+5UVbBuVihSJi3/aHzQ7eNKxYa3v2yRiPd5+n1a8RRj0sXFZPRJ/sUGjv:csBu0hSE3/aegKxtfIl5+1a8TzXFhRWF
Malware Config
Targets
-
-
Target
9a21f539a03d2d64d33791728696654a_JaffaCakes118
-
Size
179KB
-
MD5
9a21f539a03d2d64d33791728696654a
-
SHA1
793eaf63d1d0e621202d4f04cff1b938c2ca50ec
-
SHA256
bb81ee2f0879f603691a75602a39e0fbede9bcc98a326489c981ffa3c27c8077
-
SHA512
710137a8615dc802ab206ac70f6b5234440a035720314d4ca7254e7adc475c532367c059a7f93e1f289fef63fd4c3bcb2be312bef67ab8d786c040ddd3714e10
-
SSDEEP
3072:+5UVbBuVihSJi3/aHzQ7eNKxYa3v2yRiPd5+n1a8RRj0sXFZPRJ/sUGjv:csBu0hSE3/aegKxtfIl5+1a8TzXFhRWF
Score10/10-
Cycbot
Cycbot is a backdoor and trojan written in C++..
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-