General
-
Target
JaffaCakes118_650707800418b6cf533d5c5413d89380
-
Size
164KB
-
Sample
250102-pf4teavkam
-
MD5
650707800418b6cf533d5c5413d89380
-
SHA1
308fd86caeea50796d144a44fb8f6b5ff4fecfbf
-
SHA256
cf969a744501e16e29c04bafa3a052c3caa7334a24add77bb1570c3de727965f
-
SHA512
4a3645fac2d46961abf641c1e77334740feffd7c386ac150589f3f35870ba9e3689624871f0804a73bb3dd1dc466946cce92966c03cf167a6881c968ab244830
-
SSDEEP
3072:SSfOD2Yuc7YaGuQP6h6SFMr6hhh7MJCsbEvfcp39k5W4Cb4SRRATPWkqpEal:TmqrDaGuQP6UzrCzAJVbE43cW4CbfRv4
Malware Config
Targets
-
-
Target
JaffaCakes118_650707800418b6cf533d5c5413d89380
-
Size
164KB
-
MD5
650707800418b6cf533d5c5413d89380
-
SHA1
308fd86caeea50796d144a44fb8f6b5ff4fecfbf
-
SHA256
cf969a744501e16e29c04bafa3a052c3caa7334a24add77bb1570c3de727965f
-
SHA512
4a3645fac2d46961abf641c1e77334740feffd7c386ac150589f3f35870ba9e3689624871f0804a73bb3dd1dc466946cce92966c03cf167a6881c968ab244830
-
SSDEEP
3072:SSfOD2Yuc7YaGuQP6h6SFMr6hhh7MJCsbEvfcp39k5W4Cb4SRRATPWkqpEal:TmqrDaGuQP6UzrCzAJVbE43cW4CbfRv4
Score10/10-
Cycbot
Cycbot is a backdoor and trojan written in C++..
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Modifies WinLogon for persistence
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-