General
-
Target
1196d0a31402b04a32aa582ae6d2c15b_JaffaCakes118
-
Size
11KB
-
Sample
240328-18zwpsag69
-
MD5
1196d0a31402b04a32aa582ae6d2c15b
-
SHA1
5d6a8c0437bdf30079188283b0e60d063e649f27
-
SHA256
ba2e2bda0794551b0d203c2b617a8b327baa68199e5d7dd22d8849a77fac1183
-
SHA512
cb9e5c0b2a430bd2963b64e659cb2cb65f20d53888e6a188f9831a65c0dd568550439423ff2349c7100e09f45ba3b07e97688c1d9190b2bc1d7a595f310cb28a
-
SSDEEP
192:fQ6PgM8PvaA0Rj1veSS7MYtGRwcY3Pkfz216zPEDAzQSvmgVgIbc1H7vjjB4C1v6:fQ6PgM8PvaA0Rj1vy7fmjwMxzgX17j/s
Static task
static1
Behavioral task
behavioral1
Sample
1196d0a31402b04a32aa582ae6d2c15b_JaffaCakes118
Resource
ubuntu1804-amd64-20240226-en
Behavioral task
behavioral2
Sample
1196d0a31402b04a32aa582ae6d2c15b_JaffaCakes118
Resource
debian9-armhf-20240226-en
Behavioral task
behavioral3
Sample
1196d0a31402b04a32aa582ae6d2c15b_JaffaCakes118
Resource
debian9-mipsbe-20240226-en
Behavioral task
behavioral4
Sample
1196d0a31402b04a32aa582ae6d2c15b_JaffaCakes118
Resource
debian9-mipsel-20240226-en
Malware Config
Targets
-
-
Target
1196d0a31402b04a32aa582ae6d2c15b_JaffaCakes118
-
Size
11KB
-
MD5
1196d0a31402b04a32aa582ae6d2c15b
-
SHA1
5d6a8c0437bdf30079188283b0e60d063e649f27
-
SHA256
ba2e2bda0794551b0d203c2b617a8b327baa68199e5d7dd22d8849a77fac1183
-
SHA512
cb9e5c0b2a430bd2963b64e659cb2cb65f20d53888e6a188f9831a65c0dd568550439423ff2349c7100e09f45ba3b07e97688c1d9190b2bc1d7a595f310cb28a
-
SSDEEP
192:fQ6PgM8PvaA0Rj1veSS7MYtGRwcY3Pkfz216zPEDAzQSvmgVgIbc1H7vjjB4C1v6:fQ6PgM8PvaA0Rj1vy7fmjwMxzgX17j/s
Score7/10-
Executes dropped EXE
-
Attempts to change immutable files
Modifies inode attributes on the filesystem to allow changing of immutable files.
-
Checks CPU configuration
Checks CPU information which indicate if the system is a virtual machine.
-
Creates/modifies Cron job
Cron allows running tasks on a schedule, and is commonly used for malware persistence.
-
Disables SELinux
Disables SELinux security module.
-
Enumerates running processes
Discovers information about currently running processes on the system
-
Reads CPU attributes
-