General
-
Target
JaffaCakes118_43fbced0d9afb6dad1afb2d1453df515
-
Size
181KB
-
Sample
250127-1n1bqsxlak
-
MD5
43fbced0d9afb6dad1afb2d1453df515
-
SHA1
1b974c77fd26f56c9daacf32fb7e485d55a6ec89
-
SHA256
a8324544e626c81730e901110af10c4691c5b4e170820fd44b263bca1d649009
-
SHA512
c3acf5faec0d7c6c78b4122ce4c7f42843820cb1b841a22f04c901ed82dea81ef55617b0a30a236f4f4dbf34b479741ed8b23cc907e33589ef899493728e01ff
-
SSDEEP
3072:USCouxNVzz0+CF8geNeKok6WpqtPHMrzFoTgEO16Zq/27WrolUjTfg6RjjaPnCeF:U17xNV03O19okJqpMrzFohrq/27WdjjQ
Malware Config
Targets
-
-
Target
JaffaCakes118_43fbced0d9afb6dad1afb2d1453df515
-
Size
181KB
-
MD5
43fbced0d9afb6dad1afb2d1453df515
-
SHA1
1b974c77fd26f56c9daacf32fb7e485d55a6ec89
-
SHA256
a8324544e626c81730e901110af10c4691c5b4e170820fd44b263bca1d649009
-
SHA512
c3acf5faec0d7c6c78b4122ce4c7f42843820cb1b841a22f04c901ed82dea81ef55617b0a30a236f4f4dbf34b479741ed8b23cc907e33589ef899493728e01ff
-
SSDEEP
3072:USCouxNVzz0+CF8geNeKok6WpqtPHMrzFoTgEO16Zq/27WrolUjTfg6RjjaPnCeF:U17xNV03O19okJqpMrzFohrq/27WdjjQ
Score10/10-
Cycbot
Cycbot is a backdoor and trojan written in C++..
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Modifies WinLogon for persistence
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-