General
-
Target
JaffaCakes118_6cda8b56c8cdb26667912f50a234258f
-
Size
179KB
-
Sample
250116-ghbawavncw
-
MD5
6cda8b56c8cdb26667912f50a234258f
-
SHA1
a46a2d98553482ef729be3cfbfc4366241304e3e
-
SHA256
711546c4a73e555d03231da10dc51251b561de9cf393facca4b3eac262b466f7
-
SHA512
8c3e7e417edab76045406772ecf5bc9a4c7be37bb3765cb41a4be5e9d1e7a073dd2c1e3aaa15e481b400488ec50904deb5b8eb810ae1f23fd13c34e2317c971b
-
SSDEEP
3072:k0FXNJPY9XjMnklHpMNDWsia4P9Vz8Aji8zVg5zGFcti19D/WcWKEmzr9c:k0lPwNjMnklmWNa4f8AjiKS5qF4i19jK
Malware Config
Targets
-
-
Target
JaffaCakes118_6cda8b56c8cdb26667912f50a234258f
-
Size
179KB
-
MD5
6cda8b56c8cdb26667912f50a234258f
-
SHA1
a46a2d98553482ef729be3cfbfc4366241304e3e
-
SHA256
711546c4a73e555d03231da10dc51251b561de9cf393facca4b3eac262b466f7
-
SHA512
8c3e7e417edab76045406772ecf5bc9a4c7be37bb3765cb41a4be5e9d1e7a073dd2c1e3aaa15e481b400488ec50904deb5b8eb810ae1f23fd13c34e2317c971b
-
SSDEEP
3072:k0FXNJPY9XjMnklHpMNDWsia4P9Vz8Aji8zVg5zGFcti19D/WcWKEmzr9c:k0lPwNjMnklmWNa4f8AjiKS5qF4i19jK
Score10/10-
Cycbot
Cycbot is a backdoor and trojan written in C++..
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-