Overview

overview

10

Static

static

3

e418a31024...18.exe

windows7-x64

10

e418a31024...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e418a310245c96fe86b85597177587e2_JaffaCakes118

  • Size

    195KB

  • Sample

    241212-byeqcazpbn

  • MD5

    e418a310245c96fe86b85597177587e2

  • SHA1

    ca063d114bf8a6649983c16f29be0f845a6be345

  • SHA256

    19d01bfb005536ae2ebb79acd2091857640ce6ef63ca96bcef0df3528aa6ba9e

  • SHA512

    cd5598d1bcc28694f4d00909223ef2a5cc81624b5666b0af7b6d6c4d11add3e705e43574e6b5cda53c052deb60597a2c2d6fe0ccfad9664b783dcf184e957ab8

  • SSDEEP

    6144:UCInm8aZoWAKISUpNixlhrZ2jNt68BX7Rthra:UdmhC5KnUgDUBt7l7fh

Score
10/10
cycbotbackdoordiscoveryratspywarestealerupx

Malware Config

Targets

    • Target

      e418a310245c96fe86b85597177587e2_JaffaCakes118

    • Size

      195KB

    • MD5

      e418a310245c96fe86b85597177587e2

    • SHA1

      ca063d114bf8a6649983c16f29be0f845a6be345

    • SHA256

      19d01bfb005536ae2ebb79acd2091857640ce6ef63ca96bcef0df3528aa6ba9e

    • SHA512

      cd5598d1bcc28694f4d00909223ef2a5cc81624b5666b0af7b6d6c4d11add3e705e43574e6b5cda53c052deb60597a2c2d6fe0ccfad9664b783dcf184e957ab8

    • SSDEEP

      6144:UCInm8aZoWAKISUpNixlhrZ2jNt68BX7Rthra:UdmhC5KnUgDUBt7l7fh

    Score
    10/10
    cycbotbackdoordiscoveryratspywarestealerupx

    • Cycbot

      Cycbot is a backdoor and trojan written in C++..

      backdoorratcycbot

    • Cycbot family

      cycbot

    • Detects Cycbot payload

      Cycbot is a backdoor and trojan written in C++.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks