General
-
Target
31517a026e70dc7b2620892bc48f86cf1ee219bfa0da56802184f4a30fd6b095N.exe
-
Size
165KB
-
Sample
241212-xna53awjgm
-
MD5
cd0e91bba7713d1a7c66d50c4f9aed90
-
SHA1
fc4dde2537881ce341b8054fe64a9659a235bfaa
-
SHA256
31517a026e70dc7b2620892bc48f86cf1ee219bfa0da56802184f4a30fd6b095
-
SHA512
2a1eb564056bb3ea26d4ec36ba1c88482ec7fb26b788dbcde7389f654400403519d0d9c82ec544694e668ddbebba0b3a28ca4e70bf0e452764a6b5ada50615a5
-
SSDEEP
3072:EfkfcHxa/ZrtSBnZ+k2/d7V2g855t1dRTvydaDgA+XtZ4X:akfcHxaRhS7+kId/85zLRxgAiZ4
Malware Config
Targets
-
-
Target
31517a026e70dc7b2620892bc48f86cf1ee219bfa0da56802184f4a30fd6b095N.exe
-
Size
165KB
-
MD5
cd0e91bba7713d1a7c66d50c4f9aed90
-
SHA1
fc4dde2537881ce341b8054fe64a9659a235bfaa
-
SHA256
31517a026e70dc7b2620892bc48f86cf1ee219bfa0da56802184f4a30fd6b095
-
SHA512
2a1eb564056bb3ea26d4ec36ba1c88482ec7fb26b788dbcde7389f654400403519d0d9c82ec544694e668ddbebba0b3a28ca4e70bf0e452764a6b5ada50615a5
-
SSDEEP
3072:EfkfcHxa/ZrtSBnZ+k2/d7V2g855t1dRTvydaDgA+XtZ4X:akfcHxaRhS7+kId/85zLRxgAiZ4
Score10/10-
Cycbot
Cycbot is a backdoor and trojan written in C++..
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-