General
-
Target
JaffaCakes118_afda4e86aec193264031054ce220a488
-
Size
164KB
-
Sample
250118-vw4fgayng1
-
MD5
afda4e86aec193264031054ce220a488
-
SHA1
e509b45d8262cfc6e2d636c41db4ac02ba85054f
-
SHA256
1d6ffa1e76aaa12880cf4f35a5ec80234497d75337734635adcf811e2b40fc48
-
SHA512
e5d9bce8514d28e9fad7ec56cd357d6cf2de177ad60d4445a11f5e6b6c18476cf4685dc5086c3133f608127d1d3bdcff4367b7fff3c4cb5aab954bf3b12c3205
-
SSDEEP
3072:FdJc5HBhuz3BQgObFi4L2rcbqGJwEm1HxU37RcmOg87F5XG3O65bzwT:HJnbBQg2MrjGJwErVfOg8J5XeP53wT
Malware Config
Targets
-
-
Target
JaffaCakes118_afda4e86aec193264031054ce220a488
-
Size
164KB
-
MD5
afda4e86aec193264031054ce220a488
-
SHA1
e509b45d8262cfc6e2d636c41db4ac02ba85054f
-
SHA256
1d6ffa1e76aaa12880cf4f35a5ec80234497d75337734635adcf811e2b40fc48
-
SHA512
e5d9bce8514d28e9fad7ec56cd357d6cf2de177ad60d4445a11f5e6b6c18476cf4685dc5086c3133f608127d1d3bdcff4367b7fff3c4cb5aab954bf3b12c3205
-
SSDEEP
3072:FdJc5HBhuz3BQgObFi4L2rcbqGJwEm1HxU37RcmOg87F5XG3O65bzwT:HJnbBQg2MrjGJwErVfOg8J5XeP53wT
Score10/10-
Cycbot
Cycbot is a backdoor and trojan written in C++..
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Modifies WinLogon for persistence
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-