Extracted

• • Target

    f7d75b4b3cafee7194019d4c541da6bd_JaffaCakes118

  • Size

    508KB

  • MD5

    f7d75b4b3cafee7194019d4c541da6bd

  • SHA1

    85badb5e9a3a3f62346e27c46f5a8149f7c4145b

  • SHA256

    aaf565f3f1cf7bc7ae2cd14d798a1481a399af5d86e817afa15b67916d8be343

  • SHA512

    94022a34efa08b26f6672c57aa25bb68638012c862e6148156e6ce10e232478c64491ddb047abe1e38fa6339f9861c3e0794e400fb1577f41e36c488d9911b47

  • SSDEEP

    12288:u5LtTeRiAPZF6Qo+S0YiG/AIxzx5Mabeephf7zuVXBAL:u51/StYlvem

  Score

  10^/10

  cybergateremotediscoverystealertrojanupx

  • CyberGate, Rebhip

    CyberGate is a lightweight remote administration tool with a wide array of functionalities.

    trojanstealercybergate

  • Cybergate family

    cybergate

  • Uses the VBS compiler for execution

  • Suspicious use of SetThreadContext

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2