General
-
Target
JaffaCakes118_8b1a87bb29a899a517111137b23e62cb
-
Size
164KB
-
Sample
250117-n8pphsxmaj
-
MD5
8b1a87bb29a899a517111137b23e62cb
-
SHA1
e7d186ab00409c0e1a3f6457f1667e0b729fd47f
-
SHA256
4c8ae591040897908e21a857126d6a7f0854c1a911d9c3df8a4cce867823e0b4
-
SHA512
5d4e85e9cdd200e8d2a0686dad4ffe585aa68c70100402b076f1335209272582432a1be29ac1c4769ff68da965ccd6bb070870206d0c3f9a72fe5e95bfc08cfe
-
SSDEEP
3072:WaCFJSCDpb6xi2lQB32wR9wxMfBjXFJFMjnagBDBKuYjeHdI/fAUJzrGByfjcbLt:wFdDkxA8aX27ZDEuiQwfYLt
Malware Config
Targets
-
-
Target
JaffaCakes118_8b1a87bb29a899a517111137b23e62cb
-
Size
164KB
-
MD5
8b1a87bb29a899a517111137b23e62cb
-
SHA1
e7d186ab00409c0e1a3f6457f1667e0b729fd47f
-
SHA256
4c8ae591040897908e21a857126d6a7f0854c1a911d9c3df8a4cce867823e0b4
-
SHA512
5d4e85e9cdd200e8d2a0686dad4ffe585aa68c70100402b076f1335209272582432a1be29ac1c4769ff68da965ccd6bb070870206d0c3f9a72fe5e95bfc08cfe
-
SSDEEP
3072:WaCFJSCDpb6xi2lQB32wR9wxMfBjXFJFMjnagBDBKuYjeHdI/fAUJzrGByfjcbLt:wFdDkxA8aX27ZDEuiQwfYLt
Score10/10-
Cycbot
Cycbot is a backdoor and trojan written in C++..
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-