Overview

overview

7

Static

static

1

02ca1bec2d...kes118

ubuntu-18.04-amd64

7

02ca1bec2d...kes118

debian-9-armhf

7

02ca1bec2d...kes118

debian-9-mips

7

02ca1bec2d...kes118

debian-9-mipsel

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    02ca1bec2de42845c35867af0dc72be3_JaffaCakes118

  • Size

    1KB

  • Sample

    240328-l5kkaaab31

  • MD5

    02ca1bec2de42845c35867af0dc72be3

  • SHA1

    d2fc439476dd4ec34fce01257762a34b0aa6f3d5

  • SHA256

    848e8eadd6296084ce9231181c15d333d453ff0a95f4163477265211839d4f54

  • SHA512

    302e57020da9a74ee02c1f39c81aacb5a4385cedb7a0323ee3ba208d8e58fe5abdf83e2975bc8416ba684e164a512420b550f15569f3243f39a00d4cd99a3dc7

Score
7/10
antivmlinux

Malware Config

Targets

    • Target

      02ca1bec2de42845c35867af0dc72be3_JaffaCakes118

    • Size

      1KB

    • MD5

      02ca1bec2de42845c35867af0dc72be3

    • SHA1

      d2fc439476dd4ec34fce01257762a34b0aa6f3d5

    • SHA256

      848e8eadd6296084ce9231181c15d333d453ff0a95f4163477265211839d4f54

    • SHA512

      302e57020da9a74ee02c1f39c81aacb5a4385cedb7a0323ee3ba208d8e58fe5abdf83e2975bc8416ba684e164a512420b550f15569f3243f39a00d4cd99a3dc7

    Score
    7/10
    antivm

    • Executes dropped EXE

    • Checks CPU configuration

      Checks CPU information which indicate if the system is a virtual machine.

      antivm
    behavioral1behavioral2behavioral3behavioral4

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

1
T1497

Credential Access

Discovery

Virtualization/Sandbox Evasion

1
T1497

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks