General
-
Target
83686f02f75edf71aebe8750717fc642_JaffaCakes118
-
Size
126KB
-
Sample
240402-ew4s8sgh75
-
MD5
83686f02f75edf71aebe8750717fc642
-
SHA1
3e397a38dfadc167993948262d2b6030439b7f14
-
SHA256
a16711e388fd2917c761627f34467122df13cfc6b8c5c5e3fc86c192f0ed1918
-
SHA512
87ec7ce502fa465e54c773317884280b9040fe653aa47d9bdba219e30b283e97b25a4b7c47ff35e575b8e2aa82ae7cca0f4311a6e1ff589bcc731b073577a8be
-
SSDEEP
3072:6jVlyaL5JCrIpv04sKbstiEiJmP46aQyfPluesNb:yoCJCN4sKb8YmP46aQyfPluesNb
Behavioral task
behavioral1
Sample
83686f02f75edf71aebe8750717fc642_JaffaCakes118
Resource
debian9-armhf-20240226-en
Malware Config
Targets
-
-
Target
83686f02f75edf71aebe8750717fc642_JaffaCakes118
-
Size
126KB
-
MD5
83686f02f75edf71aebe8750717fc642
-
SHA1
3e397a38dfadc167993948262d2b6030439b7f14
-
SHA256
a16711e388fd2917c761627f34467122df13cfc6b8c5c5e3fc86c192f0ed1918
-
SHA512
87ec7ce502fa465e54c773317884280b9040fe653aa47d9bdba219e30b283e97b25a4b7c47ff35e575b8e2aa82ae7cca0f4311a6e1ff589bcc731b073577a8be
-
SSDEEP
3072:6jVlyaL5JCrIpv04sKbstiEiJmP46aQyfPluesNb:yoCJCN4sKb8YmP46aQyfPluesNb
Score7/10-
Changes its process name
-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Reads system routing table
Gets active network interfaces from /proc virtual filesystem.
-