General
-
Target
f9961644f774dd9b2533bb4fcd356ce7_JaffaCakes118
-
Size
168KB
-
Sample
241218-bx3qsawqgy
-
MD5
f9961644f774dd9b2533bb4fcd356ce7
-
SHA1
2091a1d49fa2e570e78d4dcb1680d05348ba9d3d
-
SHA256
55bbda7ef8ccf36366b2027dd53d3ab25d97b10845fe601f23bf6fcdf50de30e
-
SHA512
d7bdaa2feff2b2602dd0801b5545962edcbcab60c329b00dec00d7118c6d0b21a4fe4dcc3398b6c6db7e7ac6e3a72e6645b99f7b0e7edb43ab405e93cdfd20d7
-
SSDEEP
3072:cQskWUn3Ozry+KoRXckWQlHMoQEn9yzXZzZiHRUhog2T+wtYouP3oh:cxpUn393ouQlgVzAH2+TuouP3o
Malware Config
Targets
-
-
Target
f9961644f774dd9b2533bb4fcd356ce7_JaffaCakes118
-
Size
168KB
-
MD5
f9961644f774dd9b2533bb4fcd356ce7
-
SHA1
2091a1d49fa2e570e78d4dcb1680d05348ba9d3d
-
SHA256
55bbda7ef8ccf36366b2027dd53d3ab25d97b10845fe601f23bf6fcdf50de30e
-
SHA512
d7bdaa2feff2b2602dd0801b5545962edcbcab60c329b00dec00d7118c6d0b21a4fe4dcc3398b6c6db7e7ac6e3a72e6645b99f7b0e7edb43ab405e93cdfd20d7
-
SSDEEP
3072:cQskWUn3Ozry+KoRXckWQlHMoQEn9yzXZzZiHRUhog2T+wtYouP3oh:cxpUn393ouQlgVzAH2+TuouP3o
Score10/10-
Cycbot
Cycbot is a backdoor and trojan written in C++..
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Modifies WinLogon for persistence
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-