cycbot | 4d742321425e275185847a05e052e7a163615d2b2d25eaf5e418133a6c4fe715 | Triage

Submit
Reports

Overview

overview

Static

static

3

fe394925e5...18.exe

windows11-21h2-x64

Resubmissions

19-12-2024 03:36

241219-d5y4nsxjal 10

19-12-2024 03:18

241219-dtp2mavpax 10

Sharing

General

Target

fe394925e5b4175238a536bc3a4ba7c1_JaffaCakes118
Size

184KB
Sample

241219-d5y4nsxjal
MD5

fe394925e5b4175238a536bc3a4ba7c1
SHA1

e3fb230fc1e5ba65ac4b2fc7b238b2dd7af17929
SHA256

4d742321425e275185847a05e052e7a163615d2b2d25eaf5e418133a6c4fe715
SHA512

8cd5f4fcadd85a1ee7e0d56a57cc321f6290302a508319f20afd1351b445eceb52db2a5118827640c9a9f7ca3fb7718d26e966140ec608688b201de919684bd9
SSDEEP

3072:RgNUlyQrT2GI2o0tUvJKj4QajGarN6ggjZ5LAqRWBxz0W3IYsxFs:2sCGNzmvk4nHrNngjZ5Re3IvxFs

Score

10^/10

cycbot backdoor discovery rat upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

fe394925e5b4175238a536bc3a4ba7c1_JaffaCakes118.exe

Resource

win11-20241007-en

cycbot backdoor discovery rat upx

windows11-21h2-x64

20 signatures

150 seconds

Malware Config

Targets

- Target
  
  fe394925e5b4175238a536bc3a4ba7c1_JaffaCakes118
- Size
  
  184KB
- MD5
  
  fe394925e5b4175238a536bc3a4ba7c1
- SHA1
  
  e3fb230fc1e5ba65ac4b2fc7b238b2dd7af17929
- SHA256
  
  4d742321425e275185847a05e052e7a163615d2b2d25eaf5e418133a6c4fe715
- SHA512
  
  8cd5f4fcadd85a1ee7e0d56a57cc321f6290302a508319f20afd1351b445eceb52db2a5118827640c9a9f7ca3fb7718d26e966140ec608688b201de919684bd9
- SSDEEP
  
  3072:RgNUlyQrT2GI2o0tUvJKj4QajGarN6ggjZ5LAqRWBxz0W3IYsxFs:2sCGNzmvk4nHrNngjZ5Re3IvxFs
Score

10^/10

cycbot backdoor discovery rat upx
- Cycbot
  Cycbot is a backdoor and trojan written in C++..
  backdoor rat cycbot
- Cycbot family
  cycbot
- Detects Cycbot payload
  Cycbot is a backdoor and trojan written in C++.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

cycbotbackdoordiscoveryratupx

© 2018-2025

Terms | Privacy