General
-
Target
871d042a5539279c70edf759b1c3de0d_JaffaCakes118
-
Size
98KB
-
Sample
240402-j1px4aca55
-
MD5
871d042a5539279c70edf759b1c3de0d
-
SHA1
d2800919c9d8f2ff4517acf5267f3dc5170f6eca
-
SHA256
d83c7c136fbdc4f3b9f6635d5df46585523f06dfa04e0dc2e6a90c1b17bd6efe
-
SHA512
3da94e281b77bfcdb5ae5b1001a7b4faa4f85d4f9ebb5752eb69c191f5556f7df71f0da1034e0c761b4a887337457c20c9cd9c6a255520323fd7d5af2ae464bd
-
SSDEEP
3072:VSx+i6mqaObhNWnPbGnbhdamZuqQ4DPwXXtse:y6mRObnWnPCvamZuqQ4DPwXXtse
Behavioral task
behavioral1
Sample
871d042a5539279c70edf759b1c3de0d_JaffaCakes118
Resource
debian9-armhf-20240226-en
Malware Config
Extracted
gafgyt
142.4.196.193:909
Targets
-
-
Target
871d042a5539279c70edf759b1c3de0d_JaffaCakes118
-
Size
98KB
-
MD5
871d042a5539279c70edf759b1c3de0d
-
SHA1
d2800919c9d8f2ff4517acf5267f3dc5170f6eca
-
SHA256
d83c7c136fbdc4f3b9f6635d5df46585523f06dfa04e0dc2e6a90c1b17bd6efe
-
SHA512
3da94e281b77bfcdb5ae5b1001a7b4faa4f85d4f9ebb5752eb69c191f5556f7df71f0da1034e0c761b4a887337457c20c9cd9c6a255520323fd7d5af2ae464bd
-
SSDEEP
3072:VSx+i6mqaObhNWnPbGnbhdamZuqQ4DPwXXtse:y6mRObnWnPCvamZuqQ4DPwXXtse
Score6/10-
Reads system routing table
Gets active network interfaces from /proc virtual filesystem.
-