General
-
Target
f0bcf2d146335ebc58374fed8c20808f_JaffaCakes118
-
Size
189KB
-
Sample
241214-z375fswnbn
-
MD5
f0bcf2d146335ebc58374fed8c20808f
-
SHA1
20d4460fb5d8c9381ae969da5dc41c8b800f2d78
-
SHA256
e1f76fe5e6da8572be4d9d972faf9062d68d73012fa2e0684782d0564a269fd1
-
SHA512
56e16dc0afa1ebe194ba872505ae8158aebf1feea91273b3e9f04e4af4b0a43a4e691c3f1e2c843f3538982caeca666f51e6d60900f8a5bb98487d5cf48161d1
-
SSDEEP
3072:UuqlbwpTShvruhfMV1wJCptYa7AuPh6KHK+TmckfJt2GahM3n9SreLVlFy4Tb:168chvah0vwArYa7RPh6gTef6ynsC1
Malware Config
Targets
-
-
Target
f0bcf2d146335ebc58374fed8c20808f_JaffaCakes118
-
Size
189KB
-
MD5
f0bcf2d146335ebc58374fed8c20808f
-
SHA1
20d4460fb5d8c9381ae969da5dc41c8b800f2d78
-
SHA256
e1f76fe5e6da8572be4d9d972faf9062d68d73012fa2e0684782d0564a269fd1
-
SHA512
56e16dc0afa1ebe194ba872505ae8158aebf1feea91273b3e9f04e4af4b0a43a4e691c3f1e2c843f3538982caeca666f51e6d60900f8a5bb98487d5cf48161d1
-
SSDEEP
3072:UuqlbwpTShvruhfMV1wJCptYa7AuPh6KHK+TmckfJt2GahM3n9SreLVlFy4Tb:168chvah0vwArYa7RPh6gTef6ynsC1
Score10/10-
Cycbot
Cycbot is a backdoor and trojan written in C++..
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-