General
-
Target
JaffaCakes118_ddada2e503c06552711d5c21d371b93d
-
Size
183KB
-
Sample
250120-f9te4atpdl
-
MD5
ddada2e503c06552711d5c21d371b93d
-
SHA1
78ee39cad5e9841e3300615fe82aef9b3b543a43
-
SHA256
1e14fea8b6dddaf3e0ccaa26cfdba7cf5ddc0a2c2a7b12bbae6686d2e7d33ea7
-
SHA512
80ca5d44f9661e4c09c36e6ff2e7987e149e0fadaa8ab55ba2bfc223893f5eb4f8e635ba73d91a951484e4b690b6b3ccb31afdabb30503f92a0e71f969f3f115
-
SSDEEP
3072:vzRhNnqfoRhHCymt2nEBgKF7YqvUU99MQjrcXEtqPQh/W8OIbZpFtmnp7zeF0b4l:vdhNqANCymt2nEeKtHvUU9/f2Etn4MZR
Malware Config
Targets
-
-
Target
JaffaCakes118_ddada2e503c06552711d5c21d371b93d
-
Size
183KB
-
MD5
ddada2e503c06552711d5c21d371b93d
-
SHA1
78ee39cad5e9841e3300615fe82aef9b3b543a43
-
SHA256
1e14fea8b6dddaf3e0ccaa26cfdba7cf5ddc0a2c2a7b12bbae6686d2e7d33ea7
-
SHA512
80ca5d44f9661e4c09c36e6ff2e7987e149e0fadaa8ab55ba2bfc223893f5eb4f8e635ba73d91a951484e4b690b6b3ccb31afdabb30503f92a0e71f969f3f115
-
SSDEEP
3072:vzRhNnqfoRhHCymt2nEBgKF7YqvUU99MQjrcXEtqPQh/W8OIbZpFtmnp7zeF0b4l:vdhNqANCymt2nEeKtHvUU9/f2Etn4MZR
Score10/10-
Cycbot
Cycbot is a backdoor and trojan written in C++..
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Modifies WinLogon for persistence
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-