4deb03926277834d28a9e5029a380a8045f70e549f7f8384ed7055a3eb971558 | Triage

Submit
Reports

Overview

overview

Static

static

03025ccdc7...kes118

debian-12-armhf

9

Analysis

max time network
151s
platform
debian-12_armhf
resource
debian12-armhf-20240221-en
resource tags

arch:armhfimage:debian12-armhf-20240221-enkernel:6.1.0-17-armmp-lpaelocale:en-usos:debian-12-armhfsystem
submitted
27-04-2024 10:07

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

03025ccdc74f6cafd89eb2f8b710eeb1_JaffaCakes118

Resource

debian12-armhf-20240221-en

debian-12-armhf

2 signatures

150 seconds

Report Analysis Logs

General

Target

03025ccdc74f6cafd89eb2f8b710eeb1_JaffaCakes118
Size

139KB
MD5

03025ccdc74f6cafd89eb2f8b710eeb1
SHA1

95629bacd4d259c28aa1793bbc32de0caa730f26
SHA256

4deb03926277834d28a9e5029a380a8045f70e549f7f8384ed7055a3eb971558
SHA512

6bb4ce652d972a33a4704c6b4f3cc9de1e67e590457d125b7ef2f5a090b9b5895bb36757dc43aa5845c29bff3e5b2fc92db6f33568c9154a2a47256c4d162c2f
SSDEEP

3072:V0aMUPzrxQ6jJEdVQ39mrsplDKZUIQBKXAVan7X+F8JyvQlhLAgSSofoPlBdOmKe:V0aMUPzrxQ6jJEdy39mrsplDKZUIQBKP

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (20671) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046

Processes

Network

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy