General
-
Target
JaffaCakes118_1c689c04d55a8bf2f3c82fa91494c4d1
-
Size
184KB
-
Sample
250124-ay6cmaspgp
-
MD5
1c689c04d55a8bf2f3c82fa91494c4d1
-
SHA1
118f3c57b22da48fe68652499720b7a80f3066dd
-
SHA256
f9617b39bf8edbd43d2953d102a3ffe065641635e7f95e9b10757ad17cd082fe
-
SHA512
14d019e3fe1228176f5347e109319de8cf15b3dfb3244dade27c23d58516cad250a6dc74c025671daeb0e0adcef579854a9f6722426e1a36555ff098d03b0fe3
-
SSDEEP
3072:Dr4Y23xyhDFDYOemKxcAHbhsAHbE7NfNlFqzdUF2tVLIR+tqzl/ooqmCTGXSnADy:Dr4Y23xsNyH6AwZf8zd37IR+0zJ/ByGI
Malware Config
Targets
-
-
Target
JaffaCakes118_1c689c04d55a8bf2f3c82fa91494c4d1
-
Size
184KB
-
MD5
1c689c04d55a8bf2f3c82fa91494c4d1
-
SHA1
118f3c57b22da48fe68652499720b7a80f3066dd
-
SHA256
f9617b39bf8edbd43d2953d102a3ffe065641635e7f95e9b10757ad17cd082fe
-
SHA512
14d019e3fe1228176f5347e109319de8cf15b3dfb3244dade27c23d58516cad250a6dc74c025671daeb0e0adcef579854a9f6722426e1a36555ff098d03b0fe3
-
SSDEEP
3072:Dr4Y23xyhDFDYOemKxcAHbhsAHbE7NfNlFqzdUF2tVLIR+tqzl/ooqmCTGXSnADy:Dr4Y23xsNyH6AwZf8zd37IR+0zJ/ByGI
Score10/10-
Cycbot
Cycbot is a backdoor and trojan written in C++..
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-