352efca0b5b57dfecd8ba625e85bd482c4f53408b8ff99c142f6359f5d03fc3d | Triage

Submit
Reports

Overview

overview

Static

static

215fbc4bda...kes118

debian-12-armhf

9

Analysis

max time network
152s
platform
debian-12_armhf
resource
debian12-armhf-20240418-en
resource tags

arch:armhfimage:debian12-armhf-20240418-enkernel:6.1.0-17-armmp-lpaelocale:en-usos:debian-12-armhfsystem
submitted
07/05/2024, 19:23

Sharing

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

215fbc4bdabb9dbfdbaac8af9930cfce_JaffaCakes118

Resource

debian12-armhf-20240418-en

debian-12-armhf

2 signatures

150 seconds

Report Analysis Logs

General

Target

215fbc4bdabb9dbfdbaac8af9930cfce_JaffaCakes118
Size

202KB
MD5

215fbc4bdabb9dbfdbaac8af9930cfce
SHA1

b54fdf7cc81232e51070819af08cf28b674639fa
SHA256

352efca0b5b57dfecd8ba625e85bd482c4f53408b8ff99c142f6359f5d03fc3d
SHA512

8178e76e3b7c745fa0f80051a6f749ad4d2e44ab547358a30c7ea9de6ea9a87251351ecdc873dcd4b5dfd1cadc18ab81f2790feb41f7e5de0cd255f6c491c9fc
SSDEEP

6144:HT70BozapYmAx5TRDDh5HDIjM/9AmElwec5hzE:HTMozapYmAx5FXbsg/KmElfc5hzE

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (94863) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046

Processes

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy