General

  • Target

    df8361b0ac6c8f01dfd7f88504a0b877_JaffaCakes118

  • Size

    204KB

  • Sample

    241211-ctm2la1nd1

  • MD5

    df8361b0ac6c8f01dfd7f88504a0b877

  • SHA1

    5c6f27553b0effd993cb98a22f308b946e7cf67d

  • SHA256

    bdf77469f61ee2c6f5901cecb0890083621b12a914b2638e9de2222d32bdf32c

  • SHA512

    a9927cd2dc837223907f12253f54c533b01dbf07485f49e3858f55d64e5074033682e1a13495c038239c807367e790b8d44e5d674cb202238c669bc77ef1ff4d

  • SSDEEP

    3072:IKqYNVsbEv2JRKoPQ66HOczGVyQyDZ1xfAgL09MggICk7YzClS2:cbbEgVPQ6SOcqyQy919ho9MG5Wyh

Malware Config

Targets

    • Target

      df8361b0ac6c8f01dfd7f88504a0b877_JaffaCakes118

    • Size

      204KB

    • MD5

      df8361b0ac6c8f01dfd7f88504a0b877

    • SHA1

      5c6f27553b0effd993cb98a22f308b946e7cf67d

    • SHA256

      bdf77469f61ee2c6f5901cecb0890083621b12a914b2638e9de2222d32bdf32c

    • SHA512

      a9927cd2dc837223907f12253f54c533b01dbf07485f49e3858f55d64e5074033682e1a13495c038239c807367e790b8d44e5d674cb202238c669bc77ef1ff4d

    • SSDEEP

      3072:IKqYNVsbEv2JRKoPQ66HOczGVyQyDZ1xfAgL09MggICk7YzClS2:cbbEgVPQ6SOcqyQy919ho9MG5Wyh

    • Cycbot

      Cycbot is a backdoor and trojan written in C++..

    • Cycbot family

    • Detects Cycbot payload

      Cycbot is a backdoor and trojan written in C++.

    • Modifies WinLogon for persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.