628accd0594f41e639d2dc6754df54dce1892ea79f74a60001bf6688b13f01bd | Triage

Submit
Reports

Overview

overview

Static

static

16ea0d9c67...kes118

debian-9-armhf

9

Analysis

max time network
153s
platform
debian-9_armhf
resource
debian9-armhf-20240226-en
resource tags

arch:armhfimage:debian9-armhf-20240226-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
submitted
05-05-2024 08:54

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

16ea0d9c671e0391043d58b512ed3b1e_JaffaCakes118

Resource

debian9-armhf-20240226-en

debian-9-armhf

2 signatures

150 seconds

Report Analysis Logs

General

Target

16ea0d9c671e0391043d58b512ed3b1e_JaffaCakes118
Size

144KB
MD5

16ea0d9c671e0391043d58b512ed3b1e
SHA1

40728173a8129b026a8d0498b21f0a5428479c13
SHA256

628accd0594f41e639d2dc6754df54dce1892ea79f74a60001bf6688b13f01bd
SHA512

3e5d6a0262ff0ba98ba161310a7bce28c4d886c32a27da466a306fc5f9b40346de235319e22a55e1bd4ec1e718a152ef1813af233d10999e05848f72337b3a37
SSDEEP

3072:HKvvsSjh0lE+KHw/r9mrsplDKZUoQBKXAVaneX+F8JyvLlhLUgP5bfsjJNxe+SJN:HKvvsSjh0lE+KHyr9mrsplDKZUoQBKXz

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (20245) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046

Processes

Network

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy