General

  • Target

    JaffaCakes118_7c92f3ba9b25b2770d85087c2f6d9ae0

  • Size

    181KB

  • Sample

    250116-vgqaas1jcl

  • MD5

    7c92f3ba9b25b2770d85087c2f6d9ae0

  • SHA1

    0b4f440dc3cec4a0bfccd6986a1ee67b5c4a974c

  • SHA256

    64e917a0a8c0a5ed359120f64c22649f2aef1b65416ec9753c11daaea1c916f3

  • SHA512

    5fe9f47e9d1067243e51c44b48ebd4418e76f06477474625465956c0b603c698ccb731f790f6b26926909f7fbdc7348b2b37748b3aa47c35704ed79ebaa3bce5

  • SSDEEP

    3072:iGa7XIo6ihBXzceKxd81VkHHHK0YVfrw1Jdz/VvYBJUR4m2Z0Z:i3IJqDl8HoVfstVvYcumR

Malware Config

Targets

    • Target

      JaffaCakes118_7c92f3ba9b25b2770d85087c2f6d9ae0

    • Size

      181KB

    • MD5

      7c92f3ba9b25b2770d85087c2f6d9ae0

    • SHA1

      0b4f440dc3cec4a0bfccd6986a1ee67b5c4a974c

    • SHA256

      64e917a0a8c0a5ed359120f64c22649f2aef1b65416ec9753c11daaea1c916f3

    • SHA512

      5fe9f47e9d1067243e51c44b48ebd4418e76f06477474625465956c0b603c698ccb731f790f6b26926909f7fbdc7348b2b37748b3aa47c35704ed79ebaa3bce5

    • SSDEEP

      3072:iGa7XIo6ihBXzceKxd81VkHHHK0YVfrw1Jdz/VvYBJUR4m2Z0Z:i3IJqDl8HoVfstVvYcumR

    • Cycbot

      Cycbot is a backdoor and trojan written in C++..

    • Cycbot family

    • Detects Cycbot payload

      Cycbot is a backdoor and trojan written in C++.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks