Overview

overview

7

Static

static

1

0295b7f89f...kes118

ubuntu-18.04-amd64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    0295b7f89fae9e461949d02301136143_JaffaCakes118

  • Size

    40KB

  • Sample

    240328-lwtftshh31

  • MD5

    0295b7f89fae9e461949d02301136143

  • SHA1

    a0526eb97b5a78ba4ef72aaceb085227f74a1f8d

  • SHA256

    ea1c32b8b41a64ffe9d03c21324bb3377b7eee8c6d32a413af4b9bb8904efe3e

  • SHA512

    801c2792332fd07904dd5f1bbdb258a4ee351f9ce491c9142b86d134e6729c9a6949838f4362ccca9f4733a11f06bae3ce3d0c3fd7c3c61f20aff882633ed6a9

  • SSDEEP

    768:vTXHm1e/Uj581NgPQEexiFbH1QySXsGpMyyibcg8A81I2sv9sPtPnta1R02BLH:vTXTDgPQEs+BQLXPWi4g836FudnAt7

Score
7/10
linux

Malware Config

Targets

    • Target

      0295b7f89fae9e461949d02301136143_JaffaCakes118

    • Size

      40KB

    • MD5

      0295b7f89fae9e461949d02301136143

    • SHA1

      a0526eb97b5a78ba4ef72aaceb085227f74a1f8d

    • SHA256

      ea1c32b8b41a64ffe9d03c21324bb3377b7eee8c6d32a413af4b9bb8904efe3e

    • SHA512

      801c2792332fd07904dd5f1bbdb258a4ee351f9ce491c9142b86d134e6729c9a6949838f4362ccca9f4733a11f06bae3ce3d0c3fd7c3c61f20aff882633ed6a9

    • SSDEEP

      768:vTXHm1e/Uj581NgPQEexiFbH1QySXsGpMyyibcg8A81I2sv9sPtPnta1R02BLH:vTXTDgPQEs+BQLXPWi4g836FudnAt7

    Score
    7/10

    • Changes its process name

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks