Malware Analysis Report

2025-04-14 01:00

Sample ID 240603-kmfmyahd3t
Target 912902d89cb0b8d2bf8811850febd3f3_JaffaCakes118
SHA256 ea625ad5467c58b8786f94591ee8a15913c76f04f37d5404a5581a27d05c3bf1
Tags
score
1/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
1/10

SHA256

ea625ad5467c58b8786f94591ee8a15913c76f04f37d5404a5581a27d05c3bf1

Threat Level: No (potentially) malicious behavior was detected

The file 912902d89cb0b8d2bf8811850febd3f3_JaffaCakes118 was found to be: No (potentially) malicious behavior was detected.

Malicious Activity Summary

N/A

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2024-06-03 08:42

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-03 08:42

Reported

2024-06-03 08:45

Platform

debian9-armhf-20240226-en

Max time network

160s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
CA 192.99.247.194:54759 tcp
HK 156.230.73.253:8083 tcp
EG 156.182.255.141:8083 tcp
EG 156.165.113.37:8083 tcp
US 156.5.49.140:8083 tcp
US 156.3.110.155:8083 tcp
CH 156.106.47.60:8083 tcp
ZA 156.0.175.5:8083 tcp
US 156.64.77.176:8083 tcp
US 156.19.177.174:8083 tcp
US 156.3.230.185:8083 tcp
EG 156.187.74.185:8083 tcp
US 156.105.182.251:8083 tcp
EG 156.221.41.183:8083 tcp
TZ 156.158.191.87:8083 tcp
MU 156.230.190.65:8083 tcp
US 156.117.65.128:8083 tcp
EG 156.176.152.85:8083 tcp
US 156.131.254.93:8083 tcp
EG 156.201.92.135:8083 tcp
EG 156.184.28.45:8083 tcp
US 156.64.45.152:8083 tcp
SE 156.49.57.207:8083 tcp
EG 156.169.148.47:8083 tcp
US 156.108.187.238:8083 tcp
EG 156.166.98.199:8083 tcp
US 156.90.124.238:8083 tcp
EG 156.162.174.71:8083 tcp
CA 156.57.116.124:8083 tcp
FI 156.10.129.176:8083 tcp
EG 156.163.40.146:8083 tcp
US 156.84.17.213:8083 tcp
US 156.121.199.34:8083 tcp
CL 156.97.173.251:8083 tcp
TH 156.249.242.182:8083 tcp
JP 156.231.245.232:8083 tcp
HK 156.239.176.148:8083 tcp
EG 156.176.192.59:8083 tcp
EG 156.199.67.21:8083 tcp
US 156.47.190.31:8083 tcp
AT 156.58.214.253:8083 tcp
US 156.71.5.35:8083 tcp
US 156.37.110.60:8083 tcp
US 156.23.156.49:8083 tcp
EG 156.197.229.154:8083 tcp
PL 156.17.33.167:8083 tcp
US 156.117.242.189:8083 tcp
US 156.1.81.229:8083 tcp
EG 156.178.91.191:8083 tcp
US 156.103.205.11:8083 tcp
FR 156.118.28.171:8083 tcp
FR 156.118.65.71:8083 tcp
HK 156.226.104.152:8083 tcp
US 156.74.133.214:8083 tcp
EG 156.200.55.84:8083 tcp
US 156.45.53.211:8083 tcp
EG 156.213.173.57:8083 tcp
US 156.120.134.212:8083 tcp
US 156.139.59.118:8083 tcp
US 156.128.198.55:8083 tcp
US 156.15.233.170:8083 tcp
GB 156.48.69.96:8083 tcp
US 156.60.173.148:8083 tcp
US 156.123.86.174:8083 tcp
EG 156.181.221.203:8083 tcp
EG 156.223.177.250:8083 tcp
US 156.53.64.149:8083 tcp
US 156.248.93.10:8083 tcp
US 156.80.64.148:8083 tcp
EG 156.183.109.16:8083 tcp
US 156.92.74.77:8083 tcp
US 156.108.14.89:8083 tcp
US 156.125.227.113:8083 tcp
SE 156.51.58.177:8083 tcp
CH 156.25.92.185:8083 tcp
EG 156.173.73.153:8083 tcp
US 156.236.196.247:8083 tcp
CH 156.25.139.99:8083 tcp
KR 156.147.26.102:8083 tcp
US 156.5.132.187:8083 tcp
US 156.77.232.233:8083 tcp
EG 156.204.64.101:8083 tcp
EG 156.171.170.75:8083 tcp
EG 156.201.182.159:8083 tcp
EG 156.169.15.204:8083 tcp
EG 156.174.159.227:8083 tcp
US 156.3.30.117:8083 tcp
US 156.127.126.198:8083 tcp
US 156.126.206.35:8083 tcp
EG 156.185.167.23:8083 tcp
US 156.66.152.199:8083 tcp
IT 156.148.23.14:8083 tcp
ZA 156.155.155.18:8083 tcp
EG 156.184.33.83:8083 tcp
US 156.235.99.2:8083 tcp
US 156.73.70.5:8083 tcp
GB 156.61.227.178:8083 tcp
US 156.66.110.56:8083 tcp
US 156.40.75.58:8083 tcp
US 156.75.122.224:8083 tcp
BR 156.243.80.79:8083 tcp
BR 156.249.71.184:8083 tcp
EG 156.180.210.187:8083 tcp
EG 156.186.89.184:8083 tcp
CA 156.57.36.233:8083 tcp
US 156.235.68.93:8083 tcp
HK 156.226.71.121:8083 tcp
US 156.91.106.95:8083 tcp
NL 156.114.39.142:8083 tcp
FR 156.18.150.244:8083 tcp
SG 156.247.235.47:8083 tcp
HK 156.251.21.205:8083 tcp
JP 156.231.133.117:8083 tcp
US 156.142.181.25:8083 tcp
BR 156.233.88.159:8083 tcp
ZA 156.0.178.206:8083 tcp
US 156.84.134.98:8083 tcp
HK 156.227.38.76:8083 tcp
CH 156.25.68.99:8083 tcp
US 156.36.81.123:8083 tcp
US 156.1.101.154:8083 tcp
US 156.77.90.232:8083 tcp
US 156.39.91.252:8083 tcp
EG 156.178.131.5:8083 tcp
US 156.46.128.13:8083 tcp
EG 156.189.119.19:8083 tcp
US 156.21.222.134:8083 tcp
EG 156.216.170.117:8083 tcp
US 156.82.160.190:8083 tcp
HK 156.250.197.42:8083 tcp
US 156.89.11.123:8083 tcp
US 156.81.227.211:8083 tcp
GB 156.48.188.10:8083 tcp
US 156.65.199.156:8083 tcp
US 156.111.233.136:8083 tcp
US 156.93.6.248:8083 tcp
EG 156.200.226.250:8083 tcp
US 156.36.239.157:8083 tcp
NZ 156.13.145.80:8083 tcp
EG 156.166.31.189:8083 tcp
AU 156.22.218.223:8083 tcp
US 156.9.62.118:8083 tcp
EG 156.190.142.85:8083 tcp
US 156.27.205.206:8083 tcp
EG 156.219.164.218:8083 tcp
EG 156.188.167.124:8083 tcp
US 156.27.53.103:8083 tcp
EG 156.214.239.221:8083 tcp
US 156.102.50.128:8083 tcp
EG 156.205.131.224:8083 tcp
GB 156.37.224.162:8083 tcp
EG 156.188.30.202:8083 tcp
US 156.120.165.187:8083 tcp
EG 156.182.178.222:8083 tcp
ZA 156.155.43.236:8083 tcp
US 156.24.200.35:8083 tcp
US 156.110.146.20:8083 tcp
US 156.75.16.54:8083 tcp
EG 156.189.88.185:8083 tcp
EG 156.174.29.156:8083 tcp
EG 156.213.142.19:8083 tcp
EG 156.222.79.48:8083 tcp
EG 156.200.207.58:8083 tcp
US 156.105.191.183:8083 tcp
US 156.30.7.231:8083 tcp
EG 156.220.4.49:8083 tcp
US 156.81.204.55:8083 tcp
JP 156.53.233.135:8083 tcp
US 156.85.249.10:8083 tcp
US 156.27.18.181:8083 tcp
US 156.154.43.112:8083 tcp
US 156.154.11.201:8083 tcp
EG 156.177.216.73:8083 tcp
US 156.9.75.201:8083 tcp
US 156.143.99.200:8083 tcp
US 156.123.55.141:8083 tcp
US 156.20.54.98:8083 tcp
US 156.151.116.107:8083 tcp
EG 156.168.39.46:8083 tcp
US 156.64.122.242:8083 tcp
US 156.143.100.34:8083 tcp
EG 156.222.147.198:8083 tcp
CL 156.97.158.123:8083 tcp
EG 156.221.129.163:8083 tcp
US 156.79.104.119:8083 tcp
US 156.136.64.136:8083 tcp
GB 156.243.151.25:8083 tcp
EG 156.221.31.27:8083 tcp
EG 156.206.61.5:8083 tcp
EG 156.212.58.132:8083 tcp
HK 156.240.126.68:8083 tcp
US 156.53.111.50:8083 tcp
US 156.12.231.240:8083 tcp
EG 156.185.233.194:8083 tcp
HK 156.251.203.14:8083 tcp
US 156.102.243.20:8083 tcp
EG 156.197.86.189:8083 tcp
US 156.20.221.114:8083 tcp
HK 156.255.114.2:8083 tcp
US 156.68.2.221:8083 tcp
US 156.93.224.16:8083 tcp
SE 156.51.54.244:8083 tcp
CZ 156.137.251.180:8083 tcp
US 156.127.241.176:8083 tcp
EG 156.184.60.187:8083 tcp
CA 156.44.26.25:8083 tcp
EG 156.198.241.169:8083 tcp
DE 156.228.250.46:8083 tcp
US 156.64.70.113:8083 tcp
EG 156.210.224.96:8083 tcp
TZ 156.157.183.224:8083 tcp
US 156.1.203.163:8083 tcp
US 156.74.108.151:8083 tcp
CA 156.34.244.117:8083 tcp
US 156.46.255.94:8083 tcp
US 156.123.83.12:8083 tcp
US 156.246.4.216:8083 tcp
US 156.121.75.12:8083 tcp
US 156.111.156.11:8083 tcp
GB 156.61.25.81:8083 tcp
AU 156.107.173.39:8083 tcp
US 156.144.176.131:8083 tcp
US 156.90.36.15:8083 tcp
RO 156.141.161.248:8083 tcp
EG 156.188.94.211:8083 tcp
AU 156.50.78.26:8083 tcp
US 156.92.148.181:8083 tcp
HK 156.235.192.102:8083 tcp
US 156.122.162.243:8083 tcp
EG 156.178.191.63:8083 tcp
US 156.93.244.18:8083 tcp
CH 156.106.31.82:8083 tcp
US 156.71.128.237:8083 tcp
US 156.27.29.213:8083 tcp
US 156.20.75.117:8083 tcp
US 156.41.226.247:8083 tcp
NL 156.114.114.175:8083 tcp
NZ 156.69.9.211:8083 tcp
US 156.5.24.113:8083 tcp
US 156.103.68.65:8083 tcp
EG 156.172.28.148:8083 tcp
US 156.73.63.43:8083 tcp
US 156.9.139.11:8083 tcp
US 156.113.37.61:8083 tcp
US 156.121.12.95:8083 tcp
US 156.73.70.5:8083 tcp
US 156.235.99.2:8083 tcp
HR 45.95.168.215:55554 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp
CA 192.99.247.194:54759 tcp

Files

N/A