35b18cfa90e951f1e9216e64625a436f959cb325387fdb5a93ce4c397e75616e | Triage

Submit
Reports

Overview

overview

Static

static

5848e14b94...kes118

debian-9-armhf

9

Analysis

max time network
151s
platform
debian-9_armhf
resource
debian9-armhf-20240226-en
resource tags

arch:armhfimage:debian9-armhf-20240226-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
submitted
19-05-2024 03:14

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

5848e14b9454874b3af3551abe327ad4_JaffaCakes118

Resource

debian9-armhf-20240226-en

debian-9-armhf

2 signatures

150 seconds

Report Analysis Logs

General

Target

5848e14b9454874b3af3551abe327ad4_JaffaCakes118
Size

66KB
MD5

5848e14b9454874b3af3551abe327ad4
SHA1

c091e05afb074fb882e0fd323b7493b7fce7b10b
SHA256

35b18cfa90e951f1e9216e64625a436f959cb325387fdb5a93ce4c397e75616e
SHA512

4c44547c053a8b1e447fa4da2e48a636863b637074e1b5e4eceb677b35e04ce2777f4d31b4897a75923c5f8b021613d79d19d38bec81b56ffcbaa922c6da20c6
SSDEEP

768:Ui781/+nzbAEUJhQyqTVc7HYCqSfuSbQsI892OPQHjlrkHuLwCVy/Jx+5H8hG1rt:576WlUPQ7CqcbhYOPEjtBeZW+06kfl

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (41207) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046

Processes

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy