General
-
Target
7a1d82dea116bd73e4c49016c60962a9_JaffaCakes118
-
Size
97KB
-
Sample
240401-zltkqsfe88
-
MD5
7a1d82dea116bd73e4c49016c60962a9
-
SHA1
1d5bb5fa9ee2bc81c5a2ed914f7ab73c5b59ee06
-
SHA256
ccd16522ed3321468d528991574816d69b737503a438c906ada6aad15d29948e
-
SHA512
4ec7ff5095020c7486cad0138778d457f3dc1207a3d0d7e874f14d78f5985d232594da5ea17e29454f8f5cad3182ba5b14757d0d7beccdbb5163f5c8a6cf933f
-
SSDEEP
3072:VK1z13U6HzHoXRtmTUhQogmEmmFVcqq0GnDZT:VK7DDeKlogmEmmFVcqq0GnDZT
Behavioral task
behavioral1
Sample
7a1d82dea116bd73e4c49016c60962a9_JaffaCakes118
Resource
ubuntu2004-amd64-20240221-en
Malware Config
Targets
-
-
Target
7a1d82dea116bd73e4c49016c60962a9_JaffaCakes118
-
Size
97KB
-
MD5
7a1d82dea116bd73e4c49016c60962a9
-
SHA1
1d5bb5fa9ee2bc81c5a2ed914f7ab73c5b59ee06
-
SHA256
ccd16522ed3321468d528991574816d69b737503a438c906ada6aad15d29948e
-
SHA512
4ec7ff5095020c7486cad0138778d457f3dc1207a3d0d7e874f14d78f5985d232594da5ea17e29454f8f5cad3182ba5b14757d0d7beccdbb5163f5c8a6cf933f
-
SSDEEP
3072:VK1z13U6HzHoXRtmTUhQogmEmmFVcqq0GnDZT:VK7DDeKlogmEmmFVcqq0GnDZT
Score7/10-
Changes its process name
-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Reads system routing table
Gets active network interfaces from /proc virtual filesystem.
-