02a4dd81008ce8f815a281041f6a71fb8c3b27a0dd999fd7d7125a735475e8ad | Triage

Submit
Reports

Overview

overview

Static

static

0e0491eb80...kes118

debian-9-armhf

9

Analysis

max time network
151s
platform
debian-9_armhf
resource
debian9-armhf-20240418-en
resource tags

arch:armhfimage:debian9-armhf-20240418-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
submitted
02-05-2024 08:39

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0e0491eb80540d93e140ef1c5e9afe01_JaffaCakes118

Resource

debian9-armhf-20240418-en

debian-9-armhf

2 signatures

150 seconds

Report Analysis Logs

General

Target

0e0491eb80540d93e140ef1c5e9afe01_JaffaCakes118
Size

141KB
MD5

0e0491eb80540d93e140ef1c5e9afe01
SHA1

32984b9aa23cd7ca8e2d1da8f5b2191e24a1c813
SHA256

02a4dd81008ce8f815a281041f6a71fb8c3b27a0dd999fd7d7125a735475e8ad
SHA512

7bec233b1a0c6a4603928aac854cb2107badc9746ec95e918eaa71eff522feeda0227be81a8d466085ffcb29170f760d867c918efd5689484b61028220bf532f
SSDEEP

3072:JIgLWCZRYqrpuOFbg7znkvq9mrsplDKZUuQBKXAVanBX+F8JyvWlhLrgIJofL/ms:JIgLWCZRYqrpuOFbgzkvq9mrsplDKZU7

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (20487) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046

Processes

Network

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy