Analysis Overview
SHA256
5db31f347809c02dd4958a966daa63a1b1af5ffea1857474dbd4213d06bd7703
Threat Level: No (potentially) malicious behavior was detected
The file a233d0d967ccf8c8af4080d56ea6e23e_JaffaCakes118 was found to be: No (potentially) malicious behavior was detected.
Malicious Activity Summary
MITRE ATT&CK
Analysis: static1
Detonation Overview
Reported
2024-06-12 20:25
Signatures
Analysis: behavioral3
Detonation Overview
Submitted
2024-06-12 20:25
Reported
2024-06-12 20:25
Platform
debian9-mipsbe-20240418-en
Command Line
Signatures
Processes
Network
Files
Analysis: behavioral4
Detonation Overview
Submitted
2024-06-12 20:25
Reported
2024-06-12 20:25
Platform
debian9-mipsel-20240418-en
Command Line
Signatures
Processes
Network
Files
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-12 20:25
Reported
2024-06-12 20:28
Platform
ubuntu1804-amd64-20240611-en
Max time kernel
0s
Max time network
132s
Command Line
Signatures
Processes
/tmp/a233d0d967ccf8c8af4080d56ea6e23e_JaffaCakes118
[/tmp/a233d0d967ccf8c8af4080d56ea6e23e_JaffaCakes118]
/usr/local/sbin/python
[python /tmp/a233d0d967ccf8c8af4080d56ea6e23e_JaffaCakes118]
/usr/local/bin/python
[python /tmp/a233d0d967ccf8c8af4080d56ea6e23e_JaffaCakes118]
/usr/sbin/python
[python /tmp/a233d0d967ccf8c8af4080d56ea6e23e_JaffaCakes118]
/usr/bin/python
[python /tmp/a233d0d967ccf8c8af4080d56ea6e23e_JaffaCakes118]
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 185.125.188.62:443 | tcp | |
| GB | 185.125.188.61:443 | tcp | |
| US | 151.101.193.91:443 | tcp | |
| US | 151.101.193.91:443 | tcp | |
| GB | 89.187.167.3:443 | tcp |
Files
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-12 20:25
Reported
2024-06-12 20:28
Platform
debian9-armhf-20240418-en