03935f2d3bade18acb3e378b36372d84057e28a5107e78424bd14f878cecd42b | Triage

Submit
Reports

Overview

overview

Static

static

f1b4efcf7f...kes118

debian-12-armhf

9

Analysis

max time network
154s
platform
debian-12_armhf
resource
debian12-armhf-20240221-en
resource tags

arch:armhfimage:debian12-armhf-20240221-enkernel:6.1.0-17-armmp-lpaelocale:en-usos:debian-12-armhfsystem
submitted
15-04-2024 19:05

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f1b4efcf7f14e369d85f3804076ff42b_JaffaCakes118

Resource

debian12-armhf-20240221-en

debian-12-armhf

2 signatures

150 seconds

Report Analysis Logs

General

Target

f1b4efcf7f14e369d85f3804076ff42b_JaffaCakes118
Size

141KB
MD5

f1b4efcf7f14e369d85f3804076ff42b
SHA1

325fb929f905e4e181965d3dd01fcd1b46b820ef
SHA256

03935f2d3bade18acb3e378b36372d84057e28a5107e78424bd14f878cecd42b
SHA512

9f3bad179998d29748681e63d3ca879116f67c3db8bb23251a0b5983ed7b45ee27fcda3f0d89c6bffb1e26eafe9c181a8e814f9fa806325ea88d46379119bebd
SSDEEP

3072:ka5gM69pe0QmlTvIUdt9mrsplDKZUQQBKXAVanXX+F8JyvzPhLZ8RvBgR6yoC1MG:ka5gM69pe0QmlTvI8t9mrsplDKZUQQBp

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (20264) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046

Processes

Network

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy