20a849059921dba6e367e5a34b9687a0628d55c84bb860183c7f57f92214f807 | Triage

Submit
Reports

Overview

overview

9

Static

static

7

90d9046af8...kes118

debian-9-armhf

9

Sharing

General

Target

90d9046af833e3d12694779b277f4556_JaffaCakes118
Size

52KB
Sample

240603-hc395sgb35
MD5

90d9046af833e3d12694779b277f4556
SHA1

cf9ce3708926a3e4195df527bee872813320ecfc
SHA256

20a849059921dba6e367e5a34b9687a0628d55c84bb860183c7f57f92214f807
SHA512

cec9fd7fefe3fdfcbd80946edb1bad6a47667ad7b28d88c5c94ad9dfae886588473f52f15e92bb082e747420c04fe9714816906dcffe855a3954ba94fcaaac33
SSDEEP

1536:hOIlMtSFSIhqUXKpdhi41Hf/ZVJLLv8WHl:hOmMoBlapbief/ZfLFl

Score

9^/10

discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

90d9046af833e3d12694779b277f4556_JaffaCakes118

Resource

debian9-armhf-20240226-en

debian-9-armhf

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  90d9046af833e3d12694779b277f4556_JaffaCakes118
- Size
  
  52KB
- MD5
  
  90d9046af833e3d12694779b277f4556
- SHA1
  
  cf9ce3708926a3e4195df527bee872813320ecfc
- SHA256
  
  20a849059921dba6e367e5a34b9687a0628d55c84bb860183c7f57f92214f807
- SHA512
  
  cec9fd7fefe3fdfcbd80946edb1bad6a47667ad7b28d88c5c94ad9dfae886588473f52f15e92bb082e747420c04fe9714816906dcffe855a3954ba94fcaaac33
- SSDEEP
  
  1536:hOIlMtSFSIhqUXKpdhi41Hf/ZVJLLv8WHl:hOmMoBlapbief/ZfLFl
Score

9^/10

discovery
- Contacts a large (20629) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy