Analysis
-
max time network
153s -
platform
debian-9_armhf -
resource
debian9-armhf-20240226-en -
resource tags
arch:armhfimage:debian9-armhf-20240226-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem -
submitted
05-05-2024 08:54
Behavioral task
behavioral1
Sample
16ea0d9c671e0391043d58b512ed3b1e_JaffaCakes118
Resource
debian9-armhf-20240226-en
debian-9-armhf
2 signatures
150 seconds
General
-
Target
16ea0d9c671e0391043d58b512ed3b1e_JaffaCakes118
-
Size
144KB
-
MD5
16ea0d9c671e0391043d58b512ed3b1e
-
SHA1
40728173a8129b026a8d0498b21f0a5428479c13
-
SHA256
628accd0594f41e639d2dc6754df54dce1892ea79f74a60001bf6688b13f01bd
-
SHA512
3e5d6a0262ff0ba98ba161310a7bce28c4d886c32a27da466a306fc5f9b40346de235319e22a55e1bd4ec1e718a152ef1813af233d10999e05848f72337b3a37
-
SSDEEP
3072:HKvvsSjh0lE+KHw/r9mrsplDKZUoQBKXAVaneX+F8JyvLlhLUgP5bfsjJNxe+SJN:HKvvsSjh0lE+KHyr9mrsplDKZUoQBKXz
Score
9/10
Malware Config
Signatures
-
Contacts a large (20245) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
-
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.