Analysis
-
max time network
156s -
platform
debian-12_armhf -
resource
debian12-armhf-20240221-en -
resource tags
arch:armhfimage:debian12-armhf-20240221-enkernel:6.1.0-17-armmp-lpaelocale:en-usos:debian-12-armhfsystem -
submitted
05-05-2024 17:34
Behavioral task
behavioral1
Sample
18a8909eb7a57cf2776e043ad7f20438_JaffaCakes118
Resource
debian12-armhf-20240221-en
debian-12-armhf
2 signatures
150 seconds
General
-
Target
18a8909eb7a57cf2776e043ad7f20438_JaffaCakes118
-
Size
141KB
-
MD5
18a8909eb7a57cf2776e043ad7f20438
-
SHA1
828d10f1a4855a21870b7c013edf2d3902d75fa0
-
SHA256
e556204ddc0ac33ee7bdc73b13e777ab9f535ee97a39fd6c219682859e96bc65
-
SHA512
6877b117e75aafb56d4cca1571b8589103bce7261dd3d62749e1f7ec74f280f8c513c512330072344a741383dc6fb0e2ae01bd8525678567e23b71487adfcc5b
-
SSDEEP
3072:walgM69pe0QmlTvIUdt9mrsplDKZUQQBKXAVanXX+F8JyvSPhLZ85iBMR6yoC1QH:walgM69pe0QmlTvI8t9mrsplDKZUQQBe
Score
9/10
Malware Config
Signatures
-
Contacts a large (20158) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
-
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.