General
-
Target
cb175fcf43bb0f07227ed60c03b7d4da_JaffaCakes118
-
Size
171KB
-
Sample
241206-fawq6swqcq
-
MD5
cb175fcf43bb0f07227ed60c03b7d4da
-
SHA1
ba04ded2d6f0651eff238736779830fca66adaae
-
SHA256
2b31e369ba3cdbd27e6b3ef96df97c1806bf9706f314b8eacdc8d0c3367aa480
-
SHA512
b3571444035b30e55b18c86d9e0cda0f68566ab60e174302e32f6c177b5f4347ae3e0f024af58c8a26d43e797bfe6e525e6d7b12831063ca51ecebf3be85382b
-
SSDEEP
3072:4cDdvnrlP7DZKO3p8tZT8uex1P0ofhTe8lcGcGKvHfYm0Yp8X/ZcD/Cs:4cDvP7kUaZe/0oUGcbfwdfXmD/R
Malware Config
Targets
-
-
Target
cb175fcf43bb0f07227ed60c03b7d4da_JaffaCakes118
-
Size
171KB
-
MD5
cb175fcf43bb0f07227ed60c03b7d4da
-
SHA1
ba04ded2d6f0651eff238736779830fca66adaae
-
SHA256
2b31e369ba3cdbd27e6b3ef96df97c1806bf9706f314b8eacdc8d0c3367aa480
-
SHA512
b3571444035b30e55b18c86d9e0cda0f68566ab60e174302e32f6c177b5f4347ae3e0f024af58c8a26d43e797bfe6e525e6d7b12831063ca51ecebf3be85382b
-
SSDEEP
3072:4cDdvnrlP7DZKO3p8tZT8uex1P0ofhTe8lcGcGKvHfYm0Yp8X/ZcD/Cs:4cDvP7kUaZe/0oUGcbfwdfXmD/R
Score10/10-
Cycbot
Cycbot is a backdoor and trojan written in C++..
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-