General
-
Target
794c313c7c28561d6fccf4f25029b5c9_JaffaCakes118
-
Size
97KB
-
Sample
240401-yx4dmseg66
-
MD5
794c313c7c28561d6fccf4f25029b5c9
-
SHA1
b2eac7a32350aa37ef56bcc0168e46d9891caffd
-
SHA256
5e1aba3a2a5978bda25d93de427d0bc52c91882454ee61d989fd421f9dbfd5a9
-
SHA512
f1fe16e8f77a0e3fd119bd0e6f9be932bb20084936418c1061b3acc2b8117693c48c027c3b079325f95d7c8910f290db175ea98ae2a19b9adf8c14fca91270a3
-
SSDEEP
3072:VK1z13U6HzHoXRtmTUhQogNEmmFVcqq0GnDZT:VK7DDeKlogNEmmFVcqq0GnDZT
Behavioral task
behavioral1
Sample
794c313c7c28561d6fccf4f25029b5c9_JaffaCakes118
Resource
ubuntu2004-amd64-20240221-en
Malware Config
Targets
-
-
Target
794c313c7c28561d6fccf4f25029b5c9_JaffaCakes118
-
Size
97KB
-
MD5
794c313c7c28561d6fccf4f25029b5c9
-
SHA1
b2eac7a32350aa37ef56bcc0168e46d9891caffd
-
SHA256
5e1aba3a2a5978bda25d93de427d0bc52c91882454ee61d989fd421f9dbfd5a9
-
SHA512
f1fe16e8f77a0e3fd119bd0e6f9be932bb20084936418c1061b3acc2b8117693c48c027c3b079325f95d7c8910f290db175ea98ae2a19b9adf8c14fca91270a3
-
SSDEEP
3072:VK1z13U6HzHoXRtmTUhQogNEmmFVcqq0GnDZT:VK7DDeKlogNEmmFVcqq0GnDZT
Score7/10-
Changes its process name
-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Reads system routing table
Gets active network interfaces from /proc virtual filesystem.
-