a7a197e9ed4ec989ef59b4f87382e8f5e6e79230fa5ba55e9ca4cf551b3381bb | Triage

Submit
Reports

Overview

overview

7

Static

static

1

440eb2ae3e...kes118

ubuntu-20.04-amd64

7

Sharing

General

Target

440eb2ae3e50dcbbad327e7b8a3add15_JaffaCakes118
Size

44KB
Sample

240330-zp3b2sed4s
MD5

440eb2ae3e50dcbbad327e7b8a3add15
SHA1

42ae1c0437e7896339a2a73ee5b30f74d7519d87
SHA256

a7a197e9ed4ec989ef59b4f87382e8f5e6e79230fa5ba55e9ca4cf551b3381bb
SHA512

ab6306df3e463e3ef5d5abf959cc545bd263812400a8fb8a714cd9e9e7aad2ac396801b8149cdfd4f148cd5d2e6080a56f8698c6d8ffc56ec78520b68a5a0855
SSDEEP

768:gts3QVLZmqO+X0Go33jIXQpqVR6LTnjjlv0HGGaoBU16LA1BAf5vrm+bLq:as3QVZP/DonVpyq7jjKHGGaoBUMLAAft

Score

7^/10

antivm infostealer linux

Static task

static1

Behavioral task

behavioral1

Sample

440eb2ae3e50dcbbad327e7b8a3add15_JaffaCakes118

Resource

ubuntu2004-amd64-20240221-en

antivm infostealer

ubuntu-20.04-amd64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  440eb2ae3e50dcbbad327e7b8a3add15_JaffaCakes118
- Size
  
  44KB
- MD5
  
  440eb2ae3e50dcbbad327e7b8a3add15
- SHA1
  
  42ae1c0437e7896339a2a73ee5b30f74d7519d87
- SHA256
  
  a7a197e9ed4ec989ef59b4f87382e8f5e6e79230fa5ba55e9ca4cf551b3381bb
- SHA512
  
  ab6306df3e463e3ef5d5abf959cc545bd263812400a8fb8a714cd9e9e7aad2ac396801b8149cdfd4f148cd5d2e6080a56f8698c6d8ffc56ec78520b68a5a0855
- SSDEEP
  
  768:gts3QVLZmqO+X0Go33jIXQpqVR6LTnjjlv0HGGaoBU16LA1BAf5vrm+bLq:as3QVZP/DonVpyq7jjKHGGaoBUMLAAft
Score

7^/10

antivm infostealer
- Executes dropped EXE
- Reads EFI boot settings
  Reads EFI boot settings from the efivars filesystem, may contain security secrets or sensitive data.
  infostealer
- Checks CPU configuration
  Checks CPU information which indicate if the system is a virtual machine.
  antivm
- Checks hardware identifiers (DMI)
  Checks DMI information which indicate if the system is a virtual machine.
  antivm
- Reads hardware information
  Accesses system info like serial numbers, manufacturer names etc.
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Virtualization/Sandbox Evasion

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

antivminfostealer

© 2018-2024

Terms | Privacy