General
-
Target
6f89b1911eda5ac6efbdba986c871c44ce006e26922d4fc79b22fbb3bc881e5bN.exe
-
Size
163KB
-
Sample
250119-wcyasaymdz
-
MD5
7cf83ae4e21a58c8a8ece689b1e19580
-
SHA1
6787ed02479d34dde9a7ebe35c7fcc0cf21a204f
-
SHA256
6f89b1911eda5ac6efbdba986c871c44ce006e26922d4fc79b22fbb3bc881e5b
-
SHA512
38f1ee192814ee6c788bc339657a80023efcbfdd4a442eb3de6ea3f6aa27c1f779a30b42eff6f8033532f90c878b9cdfaedfbbefa04d30051762c09f1571247a
-
SSDEEP
3072:R+Zk8Vpx1RxuLDX42+cwt2r8YhEbKSJwv7gNoFQTWZnW1Bb1e2Mw2G0Y7DL4X:R/8Vp3uLacP81KqwOnTqIBpfJ37v
Malware Config
Targets
-
-
Target
6f89b1911eda5ac6efbdba986c871c44ce006e26922d4fc79b22fbb3bc881e5bN.exe
-
Size
163KB
-
MD5
7cf83ae4e21a58c8a8ece689b1e19580
-
SHA1
6787ed02479d34dde9a7ebe35c7fcc0cf21a204f
-
SHA256
6f89b1911eda5ac6efbdba986c871c44ce006e26922d4fc79b22fbb3bc881e5b
-
SHA512
38f1ee192814ee6c788bc339657a80023efcbfdd4a442eb3de6ea3f6aa27c1f779a30b42eff6f8033532f90c878b9cdfaedfbbefa04d30051762c09f1571247a
-
SSDEEP
3072:R+Zk8Vpx1RxuLDX42+cwt2r8YhEbKSJwv7gNoFQTWZnW1Bb1e2Mw2G0Y7DL4X:R/8Vp3uLacP81KqwOnTqIBpfJ37v
Score10/10-
Cycbot
Cycbot is a backdoor and trojan written in C++..
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-