Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

f48bbc1c6f...kes118

debian-9-armhf

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f48bbc1c6f45c1a298bcda3c89c786ad97de498100f83b773c5f176233a40e5d_JaffaCakes118

  • Size

    144KB

  • Sample

    240416-29sdpagg9x

  • MD5

    53dec94bed6f943b6a4862fa79bff6de

  • SHA1

    324708d872a11a88e5d593afca3110a3ec388318

  • SHA256

    f48bbc1c6f45c1a298bcda3c89c786ad97de498100f83b773c5f176233a40e5d

  • SHA512

    3eaff5b59a4cbda732537ea523eaf7c8b11e6bb312188e5e77f15a0de5854a910d9afeaf36231cd500159589f3a78436ab722cf7d4ec03d397f780cae6596e9c

  • SSDEEP

    3072:2Emyz6OOKMT1Fjo47jhsMqmJEXWNHcVXIq:2Ez6oMplo47tsMqpWNHcV/

Score
10/10
miraidiscovery

Malware Config

Extracted

Family

mirai

C2

bngoc.skyljne.click

Targets

    • Target

      f48bbc1c6f45c1a298bcda3c89c786ad97de498100f83b773c5f176233a40e5d_JaffaCakes118

    • Size

      144KB

    • MD5

      53dec94bed6f943b6a4862fa79bff6de

    • SHA1

      324708d872a11a88e5d593afca3110a3ec388318

    • SHA256

      f48bbc1c6f45c1a298bcda3c89c786ad97de498100f83b773c5f176233a40e5d

    • SHA512

      3eaff5b59a4cbda732537ea523eaf7c8b11e6bb312188e5e77f15a0de5854a910d9afeaf36231cd500159589f3a78436ab722cf7d4ec03d397f780cae6596e9c

    • SSDEEP

      3072:2Emyz6OOKMT1Fjo47jhsMqmJEXWNHcVXIq:2Ez6oMplo47tsMqpWNHcV/

    Score
    9/10
    discovery

    • Contacts a large (82528) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Changes its process name

    • Enumerates running processes

      Discovers information about currently running processes on the system

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks