Overview

overview

6

Static

static

1

bssh-devil/mass

ubuntu-18.04-amd64

6

bssh-devil/mass

debian-9-armhf

1

bssh-devil/mass

debian-9-mips

bssh-devil/mass

debian-9-mipsel

bssh-devil/pscan2

ubuntu-18.04-amd64

1

bssh-devil/rand

ubuntu-18.04-amd64

1

bssh-devil/rand

debian-9-armhf

1

bssh-devil/rand

debian-9-mips

bssh-devil/rand

debian-9-mipsel

bssh-devil/scan_root

ubuntu-18.04-amd64

3

bssh-devil/scan_root

debian-9-armhf

1

bssh-devil/scan_root

debian-9-mips

bssh-devil/scan_root

debian-9-mipsel

bssh-devil/scan_user

ubuntu-18.04-amd64

1

bssh-devil/scan_user

debian-9-armhf

1

bssh-devil/scan_user

debian-9-mips

bssh-devil/scan_user

debian-9-mipsel

bssh-devil/screen

ubuntu-18.04-amd64

bssh-devil/ss

ubuntu-18.04-amd64

1

bssh-devil/ssh2

ubuntu-20.04-amd64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4ded1972c4a8de16975b01fa357298aa_JaffaCakes118

  • Size

    22.6MB

  • Sample

    240517-b7htcsbh87

  • MD5

    4ded1972c4a8de16975b01fa357298aa

  • SHA1

    4b99f076c4f03066cd5b42e0170246f18ad86e2c

  • SHA256

    74c8c33e442ca7d5eecf11b47eb8698ef95457cfd60f50e1051e2251df609348

  • SHA512

    688b31beaafc53767ab6ea0616cd48f3fc9991cd2dd50da6d0b18662b26fa36a892c893e1ac6cd292d0feebbd5006ae09506de6297adea2d98e1a72a4822db4e

  • SSDEEP

    98304:cWk8yWVCRpcQxHvk8i6KCnlGAOPJjKjmljigHcD63wYZ1BEdCD1:Bk8yW4HxHvkx8nlGAOPEmly5YZ1BEY5

Score
6/10
linux

Malware Config

Targets

    • Target

      bssh-devil/mass

    • Size

      4KB

    • MD5

      68588348f132aca0058d357b8e9f2713

    • SHA1

      156fe2c968b1241c9021d32a73b8f4095a648b82

    • SHA256

      9d87c06e3aede40862887087d76173c2ac487e78cfb5e82aa9d2780d94bb32e4

    • SHA512

      882e7528652dbfb3852ca5d08997adc6fe96489d147bca9ca0d2b3feb281cadca20e71937a37008d8ea3f291d738652d0090e1ab92295959522829ea428bde3b

    • SSDEEP

      24:v+gfQjUus1EPz0hyzwGA9/F3+2g27VINUl95KeoUsP+iUprLANa7g0k8bgMucknh:v32EEPwhyzwR/9+M7Zlkn+LFZbHi

    Score
    6/10

    • Enumerates running processes

      Discovers information about currently running processes on the system

    behavioral1behavioral2behavioral3behavioral4

    • Target

      bssh-devil/pscan2

    • Size

      577KB

    • MD5

      5bad9d3a7733e38cb4783fce2936b187

    • SHA1

      aa333721481d147f966da9fc42487a53d653e7f6

    • SHA256

      966cac6d3417f7c40edbf787853f88408ceacfa0cca35f5c91ee56e01a2005e3

    • SHA512

      355bbb59a2cfa95cf9877c19bb4d0eacdbbe685dd58582b74c1255dabd596030bee93d06117479a08bd963d04f98163ba98e9eb5984d622d1ceffb524591d1d3

    • SSDEEP

      12288:d1lHt72jfhPSFQZSQVoyGP8MFrz6ylVv6htW9fak8/nt:d1lHt72jfRSFQHoyGP8MXZ6ht6fad/t

    Score
    1/10
    behavioral5

    • Target

      bssh-devil/rand

    • Size

      827B

    • MD5

      522aa1f382b3ff18c1fce152b134d201

    • SHA1

      c3af0102d2e853026a69c4b942031fdaeef00319

    • SHA256

      55762707a448487bda5d00c876502097f72eb25f124021ad397d8822f012914e

    • SHA512

      52006d80617b61f32027c4f8568d6fff0defb3c2aba890d363d0889de6a060f9691d82d57ae91ce93e9feea6074cc1966a4967a4c922fde139e2c61ebf262a50

    Score
    1/10
    behavioral6behavioral7behavioral8behavioral9

    • Target

      bssh-devil/scan_root

    • Size

      479B

    • MD5

      3dd44724188c1c724400d6b27189d891

    • SHA1

      99590ba99ce038e04c9ee9cec087237647aa4f2e

    • SHA256

      c4037e62ac73fc781b5baaec998160a29fb63ec0b5b18736316f98705422d942

    • SHA512

      c91e92d201d914da83caab80312574763653c9e131831be5f38dfd009aad8d0962fbc63c3c204731c009238986946dbceb98e2dbab8f438f6da38ee672131ffe

    Score
    3/10
    behavioral10behavioral11behavioral12behavioral13

    • Target

      bssh-devil/scan_user

    • Size

      427B

    • MD5

      95333f4be356b3541e342534857e80c9

    • SHA1

      4995198c6dd4157312de6272f21b6baf9b00d0e1

    • SHA256

      39b973296e5cfb3d758a3d0905280dd1fff18a822c1ef507dfe756225209d061

    • SHA512

      9c982d6238f412ead72ca53e259e4cfb3e189a9d9457ed75e0c97bcb2f94e98b54d8d149cf44a91bb667fadba60c14b871bfd0a0dff4c401c9849e74b861376a

    Score
    1/10
    behavioral14behavioral15behavioral16behavioral17

    • Target

      bssh-devil/screen

    • Size

      244KB

    • MD5

      cbf0f41bbbafb1c2609bedb943be3b36

    • SHA1

      a240a0118739e72ff89cefa2540bf0d7da8f8a6c

    • SHA256

      2413af510a75ada34716165992a425b35f62ba1478f63746502afd8a8a156b80

    • SHA512

      388cdc9f027aeb2b0ca336e5e262472fa8f0782727abe1e7d53723b4c36108e8b71167c06b9e5e7fb6a91ca4c9bc38be5d509ea17645cd1d23e5685307929943

    • SSDEEP

      3072:vgQ7G4bDuK/gBrcsP3a89qIW5OnApX2KnZJ5l8cZZbel8Ur5fURH59UlNmXXPqHw:vg5SSK/DsyZnpXndqWkr5sH54N2fq

    Score
    1/10
    behavioral18

    • Target

      bssh-devil/ss

    • Size

      443KB

    • MD5

      b51a52c9c82bb4401659b4c17c60f89f

    • SHA1

      b45ae5d8d3069ee7f880dd461c931fa711b6ad3d

    • SHA256

      97093a1ef729cb954b2a63d7ccc304b18d0243e2a77d87bbbb94741a0290d762

    • SHA512

      600c956d612b9b59d9846d5e83c009b6bac646ef2ba763dd54126ddf2e1a2c86c70960dbc9f836e6cbd6c7296c3f1801151a1548af904c61375d096c23aa0f68

    • SSDEEP

      6144:gIM21beIrQCxAeQmnT3V3xNNZkYgy2CZTLdUyh:NdbeIrT9QmbVDNZkMZLdUq

    Score
    1/10
    behavioral19

    • Target

      bssh-devil/ssh2

    • Size

      2.5MB

    • MD5

      3b1ead6ffeb248d74b148cc4cd8a0ef6

    • SHA1

      2e80640c5223993190dd0fdbf13228b0c6f949e1

    • SHA256

      525ff5f9dad06d910015d2ce4f46512e8f9bc3bf2cddcefbd10ee78864315510

    • SHA512

      6ef4e4a1d3d75bab49732b4755b8a77e90d2a763bb08a6e494806835079983e7caf1819f1765e386425851863bb9778a5fa3f2a6e8f22ab4a58023797b0bcdb7

    • SSDEEP

      49152:kJ8q1cQxlPbqGvk8iSH+G5YCnlGAOPOlN2jKjmlGbmigHcD2NSR03dWnYkCp16Tj:kpcQxHvk8i6KCnlGAOPJjKjmljigHcD1

    Score
    1/10
    behavioral20

MITRE ATT&CK Matrix

Tasks