Analysis Overview
SHA256
9f91caad756f3fb74abf78b4f6bef482889021e10c911512478872d9de6c18ff
Threat Level: No (potentially) malicious behavior was detected
The file 1778713ccf7dadb98715f22d9ad0a38e_JaffaCakes118 was found to be: No (potentially) malicious behavior was detected.
Malicious Activity Summary
MITRE ATT&CK
Analysis: static1
Detonation Overview
Reported
2024-05-05 11:31
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-05-05 11:31
Reported
2024-05-05 11:34
Platform
ubuntu1804-amd64-20240226-en
Max time kernel
0s
Max time network
128s
Command Line
Signatures
Processes
/tmp/1778713ccf7dadb98715f22d9ad0a38e_JaffaCakes118
[/tmp/1778713ccf7dadb98715f22d9ad0a38e_JaffaCakes118]
/usr/local/sbin/python
[python /tmp/1778713ccf7dadb98715f22d9ad0a38e_JaffaCakes118]
/usr/local/bin/python
[python /tmp/1778713ccf7dadb98715f22d9ad0a38e_JaffaCakes118]
/usr/sbin/python
[python /tmp/1778713ccf7dadb98715f22d9ad0a38e_JaffaCakes118]
/usr/bin/python
[python /tmp/1778713ccf7dadb98715f22d9ad0a38e_JaffaCakes118]
/sbin/python
[python /tmp/1778713ccf7dadb98715f22d9ad0a38e_JaffaCakes118]
/bin/python
[python /tmp/1778713ccf7dadb98715f22d9ad0a38e_JaffaCakes118]
/snap/bin/python
[python /tmp/1778713ccf7dadb98715f22d9ad0a38e_JaffaCakes118]
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| US | 151.101.130.49:443 | tcp | |
| US | 1.1.1.1:53 | cdn.fwupd.org | udp |
| US | 1.1.1.1:53 | cdn.fwupd.org | udp |
| US | 151.101.2.49:443 | cdn.fwupd.org | tcp |
| GB | 185.125.188.62:443 | tcp | |
| GB | 185.125.188.62:443 | tcp | |
| US | 151.101.193.91:443 | tcp | |
| US | 1.1.1.1:53 | extensions.gnome.org | udp |
| US | 1.1.1.1:53 | extensions.gnome.org | udp |
| US | 151.101.193.91:443 | extensions.gnome.org | tcp |
| GB | 89.187.167.3:443 | tcp |
Files
Analysis: behavioral2
Detonation Overview
Submitted
2024-05-05 11:31
Reported
2024-05-05 11:34
Platform
debian9-armhf-20240418-en
Command Line
Signatures
Processes
Network
Files
Analysis: behavioral3
Detonation Overview
Submitted
2024-05-05 11:31
Reported
2024-05-05 11:31
Platform
debian9-mipsbe-20240226-en
Command Line
Signatures
Processes
Network
Files
Analysis: behavioral4
Detonation Overview
Submitted
2024-05-05 11:31
Reported
2024-05-05 11:31
Platform
debian9-mipsel-20240226-en