General
-
Target
ec037ca59697ceaad75e779ef25ba441_JaffaCakes118
-
Size
154KB
-
Sample
241213-r5j7ea1qat
-
MD5
ec037ca59697ceaad75e779ef25ba441
-
SHA1
985d46f300cd57e366570e68d2f46084b312f534
-
SHA256
2ea5bdd2ddf67845d4a5e166494992521bbc59c6c14aa58b435c4b9f9f2c1c42
-
SHA512
0c9b91d62c58df90cbfe0769624494dc2725f15041f74c5068dfea9f4b55db09d4ccbc6679326dcdc384cd93e1516b9363db8f3208eeedc6230ccaa16dc43714
-
SSDEEP
3072:m+XC2wnwhpeovchz12YFaqFxWQIM1GL88VX0eSbwcvYPgLQENSlqUOXzPBw:dwnMvchh2MaqFxVIMkQ89QAKQISUjZw
Malware Config
Targets
-
-
Target
ec037ca59697ceaad75e779ef25ba441_JaffaCakes118
-
Size
154KB
-
MD5
ec037ca59697ceaad75e779ef25ba441
-
SHA1
985d46f300cd57e366570e68d2f46084b312f534
-
SHA256
2ea5bdd2ddf67845d4a5e166494992521bbc59c6c14aa58b435c4b9f9f2c1c42
-
SHA512
0c9b91d62c58df90cbfe0769624494dc2725f15041f74c5068dfea9f4b55db09d4ccbc6679326dcdc384cd93e1516b9363db8f3208eeedc6230ccaa16dc43714
-
SSDEEP
3072:m+XC2wnwhpeovchz12YFaqFxWQIM1GL88VX0eSbwcvYPgLQENSlqUOXzPBw:dwnMvchh2MaqFxVIMkQ89QAKQISUjZw
Score10/10-
Cycbot
Cycbot is a backdoor and trojan written in C++..
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-