4957fae60c95848a35cfd5eb4f06e6639edb27fac7ea95b1348ff97b650eec7e | Triage

Submit
Reports

Overview

overview

9

Static

static

7

867ebaadb7...kes118

debian-9-armhf

9

Analysis

max time network
153s
platform
debian-9_armhf
resource
debian9-armhf-20240226-en
resource tags

arch:armhfimage:debian9-armhf-20240226-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
submitted
31/05/2024, 09:16

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

867ebaadb782a18ba7826b05858545d6_JaffaCakes118

Resource

debian9-armhf-20240226-en

debian-9-armhf

2 signatures

150 seconds

Report Analysis Logs

General

Target

867ebaadb782a18ba7826b05858545d6_JaffaCakes118
Size

52KB
MD5

867ebaadb782a18ba7826b05858545d6
SHA1

f13b6f6e41a76d728fc8a105ca16ab7185aaa4df
SHA256

4957fae60c95848a35cfd5eb4f06e6639edb27fac7ea95b1348ff97b650eec7e
SHA512

800f2514a88c2dea9c1466acaedbec5c5070c2f36b29b6ed738438c625d03af75bf1a6aeeb12b301dbbaac837841360fe2522b221b43412652397c4d66ce10a2
SSDEEP

1536:R0NsYbiNcFtVQOobGXdzNGrAn/pLWDttlClhdoUKNS:2B9agpG0nxLW4lrAA

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (20203) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046

Processes

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy