Analysis
-
max time network
154s -
platform
debian-12_armhf -
resource
debian12-armhf-20240221-en -
resource tags
arch:armhfimage:debian12-armhf-20240221-enkernel:6.1.0-17-armmp-lpaelocale:en-usos:debian-12-armhfsystem -
submitted
15-04-2024 19:05
Behavioral task
behavioral1
Sample
f1b4efcf7f14e369d85f3804076ff42b_JaffaCakes118
Resource
debian12-armhf-20240221-en
2 signatures
150 seconds
General
-
Target
f1b4efcf7f14e369d85f3804076ff42b_JaffaCakes118
-
Size
141KB
-
MD5
f1b4efcf7f14e369d85f3804076ff42b
-
SHA1
325fb929f905e4e181965d3dd01fcd1b46b820ef
-
SHA256
03935f2d3bade18acb3e378b36372d84057e28a5107e78424bd14f878cecd42b
-
SHA512
9f3bad179998d29748681e63d3ca879116f67c3db8bb23251a0b5983ed7b45ee27fcda3f0d89c6bffb1e26eafe9c181a8e814f9fa806325ea88d46379119bebd
-
SSDEEP
3072:ka5gM69pe0QmlTvIUdt9mrsplDKZUQQBKXAVanXX+F8JyvzPhLZ8RvBgR6yoC1MG:ka5gM69pe0QmlTvI8t9mrsplDKZUQQBp
Score
9/10
Malware Config
Signatures
-
Contacts a large (20264) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
-
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.