General
-
Target
JaffaCakes118_96977cff64d6d4f4d9269f5d876ee8a1
-
Size
181KB
-
Sample
250117-y9r65sskcx
-
MD5
96977cff64d6d4f4d9269f5d876ee8a1
-
SHA1
a3342d71ae672c2a6b0e89a5d1ee959a0499f9e1
-
SHA256
1f82895292fd0f9becfb08bcf6ce3a09799a60d0a81f61160152d35798b2c2e7
-
SHA512
69a9938e7a6fd83f2e842298f377af077a0f6274bc248c11f96509aabf47659296353156cd33e0cf03ad52377d928ace442f25a84e639e15addae9462c983ab7
-
SSDEEP
3072:8YZ1KP0tYNpCv5GUS1z/IZ6+rNALY3bflCtGcKg0I57Inpm92yL5CeO:ectYNpW5GxrIZ6xuj7u7IpByty
Malware Config
Targets
-
-
Target
JaffaCakes118_96977cff64d6d4f4d9269f5d876ee8a1
-
Size
181KB
-
MD5
96977cff64d6d4f4d9269f5d876ee8a1
-
SHA1
a3342d71ae672c2a6b0e89a5d1ee959a0499f9e1
-
SHA256
1f82895292fd0f9becfb08bcf6ce3a09799a60d0a81f61160152d35798b2c2e7
-
SHA512
69a9938e7a6fd83f2e842298f377af077a0f6274bc248c11f96509aabf47659296353156cd33e0cf03ad52377d928ace442f25a84e639e15addae9462c983ab7
-
SSDEEP
3072:8YZ1KP0tYNpCv5GUS1z/IZ6+rNALY3bflCtGcKg0I57Inpm92yL5CeO:ectYNpW5GxrIZ6xuj7u7IpByty
Score10/10-
Cycbot
Cycbot is a backdoor and trojan written in C++..
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-