73137f7c1dbaf535e62d26101ba70591c20e6b8bb8e9c80ef0dc92f5cfa96334 | Triage

Submit
Reports

Overview

overview

Static

static

18ea634aea...kes118

debian-9-armhf

9

Analysis

max time network
151s
platform
debian-9_armhf
resource
debian9-armhf-20240418-en
resource tags

arch:armhfimage:debian9-armhf-20240418-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
submitted
05-05-2024 19:01

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

18ea634aea2c1745fe988cfbb8334070_JaffaCakes118

Resource

debian9-armhf-20240418-en

debian-9-armhf

2 signatures

150 seconds

Report Analysis Logs

General

Target

18ea634aea2c1745fe988cfbb8334070_JaffaCakes118
Size

139KB
MD5

18ea634aea2c1745fe988cfbb8334070
SHA1

19bc25f4767f643dc91d76f6ea5a9f53e3b59711
SHA256

73137f7c1dbaf535e62d26101ba70591c20e6b8bb8e9c80ef0dc92f5cfa96334
SHA512

ef1aa1b8a8653eddda1b04a4e3105cf11de66c1675cdf453ad57d4995c64c91de9abf5a191145d838a73f7a448e9063eb08313aff3866ee98f1553beaa083c1c
SSDEEP

3072:wybUEGniGQYtOR7aCgk9mrsplDKZUmQBKXAVanJX+F8Jyve4hL5AJI4+3jJNx13M:jbUEGniGQYtOR7aPk9mrsplDKZUmQBKD

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (20487) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046

Processes

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy