cycbot | 46ef3c8300d94ee30477e91af51292b707075bcc55a2d30a47338422c2f88bb8 | Triage

Submit
Reports

Overview

overview

Static

static

3

46ef3c8300...b8.exe

windows7-x64

46ef3c8300...b8.exe

windows10-2004-x64

3

Sharing

General

Target

46ef3c8300d94ee30477e91af51292b707075bcc55a2d30a47338422c2f88bb8.exe
Size

193KB
Sample

250108-q6rgfavlgj
MD5

ec968ef4f284d6f78f7febbf47a53e55
SHA1

150212737147274f9da79644a781f1d7b2dac843
SHA256

46ef3c8300d94ee30477e91af51292b707075bcc55a2d30a47338422c2f88bb8
SHA512

9bc8090120a503d43d0811642596cf70cee1fcbaaf536feb033000dc009a09d056df77a2bfbcae3113d2546987867c8007a73cfdf88ffb10fac0c9395ea0854c
SSDEEP

3072:pdw8KI2FAwZXhgEYHTWglAGib6nYNw56Fdw0wAIFhgJTZO9/6OCTMFkp35:pd5hMWNHrlabBw5OwA49ijTGe5

Score

10^/10

cycbot backdoor discovery rat spyware stealer upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

46ef3c8300d94ee30477e91af51292b707075bcc55a2d30a47338422c2f88bb8.exe

Resource

win7-20240903-en

cycbot backdoor discovery rat spyware stealer upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

46ef3c8300d94ee30477e91af51292b707075bcc55a2d30a47338422c2f88bb8.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  46ef3c8300d94ee30477e91af51292b707075bcc55a2d30a47338422c2f88bb8.exe
- Size
  
  193KB
- MD5
  
  ec968ef4f284d6f78f7febbf47a53e55
- SHA1
  
  150212737147274f9da79644a781f1d7b2dac843
- SHA256
  
  46ef3c8300d94ee30477e91af51292b707075bcc55a2d30a47338422c2f88bb8
- SHA512
  
  9bc8090120a503d43d0811642596cf70cee1fcbaaf536feb033000dc009a09d056df77a2bfbcae3113d2546987867c8007a73cfdf88ffb10fac0c9395ea0854c
- SSDEEP
  
  3072:pdw8KI2FAwZXhgEYHTWglAGib6nYNw56Fdw0wAIFhgJTZO9/6OCTMFkp35:pd5hMWNHrlabBw5OwA49ijTGe5
Score

10^/10

cycbot backdoor discovery rat spyware stealer upx
- Cycbot
  Cycbot is a backdoor and trojan written in C++..
  backdoor rat cycbot
- Cycbot family
  cycbot
- Detects Cycbot payload
  Cycbot is a backdoor and trojan written in C++.
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials from Password Stores

Credentials from Web Browsers

Unsecured Credentials

Credentials In Files

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

cycbotbackdoordiscoveryratspywarestealerupx

behavioral2

© 2018-2025

Terms | Privacy