General
-
Target
JaffaCakes118_69d940b56984523d3a925fed11a815d7
-
Size
185KB
-
Sample
250116-d8ffqszmfx
-
MD5
69d940b56984523d3a925fed11a815d7
-
SHA1
1a50ba4a4c814b38f0044ef22131f549083f22f6
-
SHA256
6bdca351c24268bcb1f5d4a77110a3a784f7457a14ca10d55193c53c74849495
-
SHA512
9cb4a4d9ee82cdb57cbc5cfeadd46149b69e1ea237d9085d3271c1a14e5b2ffe68b2322b40a9b84e05dc913084bf181139b770dd694d3700323f8d2b605c872f
-
SSDEEP
3072:YsTu51gCPP9FJ8Nitr8YDyoM9fXR4tKH9meeeAL26aLxxQAN4KVFLkO9V6:YsTu5r9oNkwz1fXR0kme7AaRlbeKPkOH
Malware Config
Targets
-
-
Target
JaffaCakes118_69d940b56984523d3a925fed11a815d7
-
Size
185KB
-
MD5
69d940b56984523d3a925fed11a815d7
-
SHA1
1a50ba4a4c814b38f0044ef22131f549083f22f6
-
SHA256
6bdca351c24268bcb1f5d4a77110a3a784f7457a14ca10d55193c53c74849495
-
SHA512
9cb4a4d9ee82cdb57cbc5cfeadd46149b69e1ea237d9085d3271c1a14e5b2ffe68b2322b40a9b84e05dc913084bf181139b770dd694d3700323f8d2b605c872f
-
SSDEEP
3072:YsTu51gCPP9FJ8Nitr8YDyoM9fXR4tKH9meeeAL26aLxxQAN4KVFLkO9V6:YsTu5r9oNkwz1fXR0kme7AaRlbeKPkOH
Score10/10-
Cycbot
Cycbot is a backdoor and trojan written in C++..
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-