Analysis

  • max time kernel
    0s
  • max time network
    131s
  • platform
    ubuntu-18.04_amd64
  • resource
    ubuntu1804-amd64-20240508-en
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-20240508-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    09-05-2024 10:56

General

  • Target

    299fc04fdaf5e18e880c098b1ab62375_JaffaCakes118

  • Size

    30KB

  • MD5

    299fc04fdaf5e18e880c098b1ab62375

  • SHA1

    d30f388443f7245b636b0a7186a59604d0229fe0

  • SHA256

    f8441dc0763628d9f69161c1e782b611004071c9602d5f55242705b25bbbd33b

  • SHA512

    7f49dc844b88813a3c2d788d4e7319bac59690765afeccd9b3ca5c34cf0a1ffebdbbb60c4314b9554bfd7d2fe7dee82c99184556d1565a540007d1214b1c378e

  • SSDEEP

    768:mw+w3I4hpr1lP0mX1gxDBpdyRvEeuF4pI+T+yFRYnbcuyD7Uiyqr:5v5h51lhX1MPSsei4mO+yInouy8Zqr

Score
10/10

Malware Config

Extracted

Family

mirai

Botnet

WICKED

Signatures

  • Mirai

    Mirai is a prevalent Linux malware infecting exposed network devices.

  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/299fc04fdaf5e18e880c098b1ab62375_JaffaCakes118
    /tmp/299fc04fdaf5e18e880c098b1ab62375_JaffaCakes118
    1⤵
    • Reads runtime system information
    PID:1501

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1501-1-0x0000000008048000-0x00000000080589c0-memory.dmp