b8af1935f8dc13ead1449a42782c65f9424788ef540ba40ab70e11f2314cc74d | Triage

Submit
Reports

Overview

overview

Static

static

248c0484ab...kes118

debian-9-armhf

9

Analysis

max time network
153s
platform
debian-9_armhf
resource
debian9-armhf-20240226-en
resource tags

arch:armhfimage:debian9-armhf-20240226-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
submitted
08-05-2024 11:01

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

248c0484ab7f48f3bb5a4b106b1b7208_JaffaCakes118

Resource

debian9-armhf-20240226-en

debian-9-armhf

2 signatures

150 seconds

Report Analysis Logs

General

Target

248c0484ab7f48f3bb5a4b106b1b7208_JaffaCakes118
Size

70KB
MD5

248c0484ab7f48f3bb5a4b106b1b7208
SHA1

a397c692ae5e1b71820dab8b64275d4056a9e2de
SHA256

b8af1935f8dc13ead1449a42782c65f9424788ef540ba40ab70e11f2314cc74d
SHA512

530f70b8906c41e5556880675d3842bce1724604c1fe877b20e400c8c43e29a5300a666ab5b064dd63e15eebbd5b27c67dcc1787d6e5f1b68ee009b1165cec5f
SSDEEP

1536:GbtexU5L9XouIRhb96pUQzXtwavaJ3V8OHxouJeZWDFI8MM:GbtexU0r8QCKw2FbV

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (20427) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046

Processes

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy