General
-
Target
JaffaCakes118_22f0cfea08a6b8af4efcb07f7ca78517
-
Size
162KB
-
Sample
250124-s5429axkfk
-
MD5
22f0cfea08a6b8af4efcb07f7ca78517
-
SHA1
9f1532be424a0dc5db348821eb604aa0e1d43fbe
-
SHA256
e2758c2829098986eb1830a4a0d628e262124cccd2b5321866d829858f5ece5b
-
SHA512
fcebe58f7f94cd038a81c3674877b36f839967eedd1cc41d2cadfc188145224a54ab472e006294d94c01ad093a988e40bfad75cf786a8597315a335ad766b979
-
SSDEEP
3072:PvF2KGJb1yTHHJq0oKI7i5sdFKhfh/ZVY5Fphz808I1BAfgfmhrVQpzqx:V2DB1yTHXem5EEhfKQ0L1BLfm9VQpzqx
Malware Config
Targets
-
-
Target
JaffaCakes118_22f0cfea08a6b8af4efcb07f7ca78517
-
Size
162KB
-
MD5
22f0cfea08a6b8af4efcb07f7ca78517
-
SHA1
9f1532be424a0dc5db348821eb604aa0e1d43fbe
-
SHA256
e2758c2829098986eb1830a4a0d628e262124cccd2b5321866d829858f5ece5b
-
SHA512
fcebe58f7f94cd038a81c3674877b36f839967eedd1cc41d2cadfc188145224a54ab472e006294d94c01ad093a988e40bfad75cf786a8597315a335ad766b979
-
SSDEEP
3072:PvF2KGJb1yTHHJq0oKI7i5sdFKhfh/ZVY5Fphz808I1BAfgfmhrVQpzqx:V2DB1yTHXem5EEhfKQ0L1BLfm9VQpzqx
Score10/10-
Cycbot
Cycbot is a backdoor and trojan written in C++..
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-