Analysis
-
max time network
153s -
platform
debian-12_armhf -
resource
debian12-armhf-20240221-en -
resource tags
arch:armhfimage:debian12-armhf-20240221-enkernel:6.1.0-17-armmp-lpaelocale:en-usos:debian-12-armhfsystem -
submitted
02-05-2024 00:29
Behavioral task
behavioral1
Sample
0cfb0ba967fee0b3b36b7a5806e3a238_JaffaCakes118
Resource
debian12-armhf-20240221-en
debian-12-armhf
2 signatures
150 seconds
General
-
Target
0cfb0ba967fee0b3b36b7a5806e3a238_JaffaCakes118
-
Size
148KB
-
MD5
0cfb0ba967fee0b3b36b7a5806e3a238
-
SHA1
8e735ad97f5f9aec1677ab75ed609685c0ace2bc
-
SHA256
bfd5ae94e2be72ddd77a1b42bd3f56d9a45896bc08a3aeed3503757407b9a4a6
-
SHA512
8bfb38165d6ee5aedec775ca298658a7387202e2066921625b4ef7e42bad0015ed59cabbb97eed0a8e54dfce42e7138d84db617c37d3a7aa83413b13c8feb03b
-
SSDEEP
3072:t1a5fdUEjnBGrYkRaaWgV9mrsplDKZUmQBKXAVanlX+F8JyvG4hLnAVIl+3jJNx1:tc5f2EjnBGrYkRaaLV9mrsplDKZUmQB2
Score
9/10
Malware Config
Signatures
-
Contacts a large (20782) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
-
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.