67c787098826035056f325f36177cd5d9167b6ded122962ff01f8a4082ebc224 | Triage

Submit
Reports

Overview

overview

Static

static

f6f4477f8d...kes118

debian-12-armhf

9

Analysis

max time network
151s
platform
debian-12_armhf
resource
debian12-armhf-20240221-en
resource tags

arch:armhfimage:debian12-armhf-20240221-enkernel:6.1.0-17-armmp-lpaelocale:en-usos:debian-12-armhfsystem
submitted
18-04-2024 01:02

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f6f4477f8dc96b903948ff1423acf458_JaffaCakes118

Resource

debian12-armhf-20240221-en

debian-12-armhf

2 signatures

150 seconds

Report Analysis Logs

General

Target

f6f4477f8dc96b903948ff1423acf458_JaffaCakes118
Size

141KB
MD5

f6f4477f8dc96b903948ff1423acf458
SHA1

e076419473c254c71e4dc76ec7942425a847539a
SHA256

67c787098826035056f325f36177cd5d9167b6ded122962ff01f8a4082ebc224
SHA512

299989696fd5d15c7432a7a269cfa034b6460a99e261af5ef7b270efd856584c9e3fd93d4952a483b9aea9c3aaa71131f4a9fafa3321f514376a28dd6803114e
SSDEEP

3072:walgM69pe0QmlTvIUdt9mrsplDKZUQQBKXAVanXX+F8JyvSPhLZ85iBMR6yoC1QC:walgM69pe0QmlTvI8t9mrsplDKZUQQBf

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (20570) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046

Processes

Network

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy