da0ae6d301c03f859e4ff907278fab02c943779ff51e92679b7a1704c396ec26

Sharing

Copy URL

Twitter E-mail

General

Target

9c902404d01d31d5e90fca80cfd994be_JaffaCakes118
Size

899KB
Sample

240403-b1jgbaca6x
MD5

9c902404d01d31d5e90fca80cfd994be
SHA1

ce1ea10bca50184ad488f6ef1c21366d0532d24d
SHA256

da0ae6d301c03f859e4ff907278fab02c943779ff51e92679b7a1704c396ec26
SHA512

15d9ad22c37e61c97d16cd2e921f3d2b9d770d1a43ed6187c268216092a9ad20f927e15a416d29d84de3d9677deea3bcfb3345746a427aacb79bb51076d81011
SSDEEP

24576:vq5aBmpSe7DpoYCTGBDLQ/XOPcrgLUZ7rFGHB0xx:S4YpSiDeYCTGNQ/+0r0UlrFwB0xx

Score

6^/10

linux

Malware Config

Targets

- Target
  
  .runner/boner
- Size
  
  657KB
- MD5
  
  45901e5b336fd0eb79c6decb8e9a69cb
- SHA1
  
  a9c7d059a22fed787f48698c5c10b0b5146f616d
- SHA256
  
  2ef26484ec9e70f9ba9273a9a7333af195fb35d410baf19055eacbfa157ef251
- SHA512
  
  7c50677ca440a2466c968aac6cc7e434ad65e12c1bfe49c42a4db5ca0ae3f05a850854d43faa302ce247e6655ca2359ac03151a207204d4aec63a189d9a2baf0
- SSDEEP
  
  12288:NTAOveylIPhryhy1ofo7GVtZZ0AlFx+n1ZgoQ6yVTCI:9AOveyluhryhGH7GVPDAnbgoi3
Score

1^/10
behavioral1
- Target
  
  .runner/cosynus
- Size
  
  443KB
- MD5
  
  b51a52c9c82bb4401659b4c17c60f89f
- SHA1
  
  b45ae5d8d3069ee7f880dd461c931fa711b6ad3d
- SHA256
  
  97093a1ef729cb954b2a63d7ccc304b18d0243e2a77d87bbbb94741a0290d762
- SHA512
  
  600c956d612b9b59d9846d5e83c009b6bac646ef2ba763dd54126ddf2e1a2c86c70960dbc9f836e6cbd6c7296c3f1801151a1548af904c61375d096c23aa0f68
- SSDEEP
  
  6144:gIM21beIrQCxAeQmnT3V3xNNZkYgy2CZTLdUyh:NdbeIrT9QmbVDNZkMZLdUq
Score

1^/10
behavioral2
- Target
  
  .runner/main
- Size
  
  267KB
- MD5
  
  abf74605e30c220c27fb719030f84457
- SHA1
  
  aa615be7b1b4afba293c8255536bbf25e3918112
- SHA256
  
  d1a01e023bef1ca08a344de2fa109991757f48a503f8c71225d24557355a285e
- SHA512
  
  e1898d42d6775551c733252c18cad464a6e501eb17d1c3d80127ac4dcd95cd8922db1c6c30565f1e6d90988e61793889c10f6dbb1e8b0e13a1afd838f7cf0e71
- SSDEEP
  
  6144:cHD+0MBGIOl8qhSU+O8K3hutQF5zXFJA:h0MBG5lhhZvN
Score

1^/10
behavioral3
- Target
  
  .runner/pscan2
- Size
  
  868KB
- MD5
  
  c2764861cacf73cda2227bfeb67f707d
- SHA1
  
  21ffd6abba9ae653188006f76a0e1a46442f272a
- SHA256
  
  2ede344e0415193d41b90d3cdfbf8558c307d8b8182464dfe15655ea1f88eab0
- SHA512
  
  7e1b3581a3529d8e01817d7da978618e97784e8e8bae50afbf63f71a677558eb51c1af5c04b1dde1d25d4e59fc185a37b84e3c979c34a5a8e6ad1c9aebdfef21
- SSDEEP
  
  12288:S5UO+/ruXHGrBrxUNPPivLW3/Ri6Umkzsy6HGkpa9voXSHxk/xN9FM:S0ruXHWBFk6DmpZz3pZSRexC
Score

1^/10
behavioral4
- Target
  
  .runner/run
- Size
  
  204B
- MD5
  
  05a280cfc91192143b3bc3ea958e5eee
- SHA1
  
  516f1ba2d9bc0090717cfe280ebbb7ea7c6ff21e
- SHA256
  
  3c0aee19ccba5a0080b20b198c2c00cc5432cad8bb9875462170bd58419259cf
- SHA512
  
  bf8d36c071fdc401d89d0a5a3eae5f5e713df3256295d95eb4a9a5b6b304b175f6eb712ca2c372bff1cf4fcf75c5c2d51e5c81a3c22ade07e7efcd3b0d62a987
Score

6^/10
- Enumerates running processes
  Discovers information about currently running processes on the system
- Reads CPU attributes
behavioral5 behavioral6 behavioral7 behavioral8
- Target
  
  .runner/send_vuln.py
- Size
  
  1KB
- MD5
  
  dbb01b6d40b0efa19bd887640685e3b6
- SHA1
  
  638108b2217b21843ba7f1c80a95f756e5e2310d
- SHA256
  
  6988f670c3cee552792797e7f0aea6e93516bf278b29d3ddce13cedb6c261f3b
- SHA512
  
  89149ce817b1c19c531c08e53aabe3964148ac24ccfbb56d323d3255db64f42f93ce4e0b213d996c6d84d4bb5f6930a74d3cccb9f467acbe86077071ab6ca03b
Score

3^/10
behavioral10 behavioral9

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Enumerates running processes

Reads CPU attributes

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10