Overview

overview

10

Static

static

3

VirusShare...a4.exe

windows7-x64

10

VirusShare...a4.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    VirusShare_001468a17a21611ade41d5a0d19d79a4

  • Size

    184KB

  • Sample

    250111-zch3ms1khn

  • MD5

    001468a17a21611ade41d5a0d19d79a4

  • SHA1

    4afd978cccc6e051e30a2509df4f03df3166752d

  • SHA256

    4bb9244ac4ab9d4ef677cf99288b414ae9daba4636981a3c06cf6db3c12b58f5

  • SHA512

    91c50ecf645cc5f569d0fbcd3891c1ce0d749434992d4940bbcbbaa1093c5a0b5393b5b702963556e5e8af8e6c56017b7ec8524662ceb25610a1f8776cc44657

  • SSDEEP

    3072:2ZKSpN+TQJsTC4jcKhvvBZcxBBlp6nKlbgu+J/WcY1N25eOr8JBCLOzEao4xC:2wSpUU34jrvglH+J/WcY1N2wHzfdxC

Score
10/10
cycbotbackdoordiscoveryratspywarestealerupx

Malware Config

Targets

    • Target

      VirusShare_001468a17a21611ade41d5a0d19d79a4

    • Size

      184KB

    • MD5

      001468a17a21611ade41d5a0d19d79a4

    • SHA1

      4afd978cccc6e051e30a2509df4f03df3166752d

    • SHA256

      4bb9244ac4ab9d4ef677cf99288b414ae9daba4636981a3c06cf6db3c12b58f5

    • SHA512

      91c50ecf645cc5f569d0fbcd3891c1ce0d749434992d4940bbcbbaa1093c5a0b5393b5b702963556e5e8af8e6c56017b7ec8524662ceb25610a1f8776cc44657

    • SSDEEP

      3072:2ZKSpN+TQJsTC4jcKhvvBZcxBBlp6nKlbgu+J/WcY1N25eOr8JBCLOzEao4xC:2wSpUU34jrvglH+J/WcY1N2wHzfdxC

    Score
    10/10
    cycbotbackdoordiscoveryratspywarestealerupx

    • Cycbot

      Cycbot is a backdoor and trojan written in C++..

      backdoorratcycbot

    • Cycbot family

      cycbot

    • Detects Cycbot payload

      Cycbot is a backdoor and trojan written in C++.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks