cryptbot | 46d55821e03a571dc0b40a2449a17e9d341fb54ba16aeee3af3305eab14973be | Triage

Sharing

General

Target

JaffaCakes118_46d55821e03a571dc0b40a2449a17e9d341fb54ba16aeee3af3305eab14973be
Size

3.1MB
Sample

241230-w4svdasqcr
MD5

0673c91fb591653f3b54ee5d6678f569
SHA1

f68605eb0e14c2970469dd889406423e568014eb
SHA256

46d55821e03a571dc0b40a2449a17e9d341fb54ba16aeee3af3305eab14973be
SHA512

dfa8afaba6ce195edcf8f608d48551ddd2931e7bed6dddeee5d7df0aaf4f9b9eb540412e27d7250dd6c8ce4501a2a959cefedb61e359251dbcf94305c24e522e
SSDEEP

49152:XPYnu2Yxb36Gj/qJEiPzDN/KkkzhjuPMTHq2GzI:fmFYNYdKhzhjRG

Score

10^/10

cryptbot discovery spyware stealer

Malware Config

Extracted

Family

cryptbot

C2

cemzye64.top

morota06.top

Targets

- Target
  
  JaffaCakes118_46d55821e03a571dc0b40a2449a17e9d341fb54ba16aeee3af3305eab14973be
- Size
  
  3.1MB
- MD5
  
  0673c91fb591653f3b54ee5d6678f569
- SHA1
  
  f68605eb0e14c2970469dd889406423e568014eb
- SHA256
  
  46d55821e03a571dc0b40a2449a17e9d341fb54ba16aeee3af3305eab14973be
- SHA512
  
  dfa8afaba6ce195edcf8f608d48551ddd2931e7bed6dddeee5d7df0aaf4f9b9eb540412e27d7250dd6c8ce4501a2a959cefedb61e359251dbcf94305c24e522e
- SSDEEP
  
  49152:XPYnu2Yxb36Gj/qJEiPzDN/KkkzhjuPMTHq2GzI:fmFYNYdKhzhjRG
Score

10^/10

cryptbot discovery spyware stealer
- CryptBot
  CryptBot is a C++ stealer distributed widely in bundle with other software.
  spyware stealer cryptbot
- Cryptbot family
  cryptbot
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

cryptbotdiscoveryspywarestealer

behavioral2

cryptbotdiscoveryspywarestealer