71b9b76a9c306810fbbdd19a4a2f44d98648014f0421cbecf0721b844303957b

Sharing

Copy URL

Twitter E-mail

General

Target

b7a9fc747d2679dbfb404e4a9d70b6e2_JaffaCakes118
Size

742KB
Sample

240617-ke9k2swgpk
MD5

b7a9fc747d2679dbfb404e4a9d70b6e2
SHA1

bb826c4a76c8bb861ddb6940b4b1820399783063
SHA256

71b9b76a9c306810fbbdd19a4a2f44d98648014f0421cbecf0721b844303957b
SHA512

41c76df5a144fdfcf76c05eabf46de3d3582592119eb42db177ff28e82392ef05960cba88e4d9c6def09345f24dc5c288530c98c12f297a37ea1fc878bda3f9b
SSDEEP

12288:J5TQXUIYz8hPTv9DjLLLLLz1kzrkf96JuGXJ38gh6tmV4ighEniA3JqJ:zTQXUfz8hbv9DjLLLLLpkzikuGXR8U6Q

Score

7^/10

linux upx

Malware Config

Targets

- Target
  
  bin/.sh/shhk.pub
- Size
  
  327B
- MD5
  
  375477ab542edcf1d94b7f586e7dab62
- SHA1
  
  f20a20b749dd20e276c4e1df04f43546741d974e
- SHA256
  
  1a77e3206293c04f674d54e0e9137e466c6ce377cea290f510f3df5db9ecaa5a
- SHA512
  
  c4dd2df88dac589f81c806cfd638430a6389f8e224de10ac833b9ac1c78b30ddc0c7925b1b5f2a02b8c1c99faeba6b4cb9881d2d1b9ba873f7bf35c6db9b53cc
Score

4^/10
behavioral1 behavioral2
- Target
  
  bin/.sh/sshd
- Size
  
  207KB
- MD5
  
  5a9690fa6129bc021bf40fb5f6c603bd
- SHA1
  
  289b647084a2d442e20009cc747faa579023418b
- SHA256
  
  0d4210111c88aa83ac6d87fa2f50393903757b54c2c24ab6635e1fdc0740d490
- SHA512
  
  a2ca0d2c427c744c21d3c48fb5115f8530cf36cd08c6040945a211e896fe468908cccd0b74d81b5ad51c4b4e00ecf9397bf5087f7b1cf1bbc0431545245943f5
- SSDEEP
  
  3072:BHlUUH0VU7wvr/UbrmbDA9IUTxbMZ+ln/HvGVtDlJYY3OCyC+lSMHF+UumYRH+3o:AVDTQrmnabUIn/gDHH3OCyIOFJooZK
Score

1^/10
behavioral3
- Target
  
  bin/encrypt
- Size
  
  14KB
- MD5
  
  98bf3bd30914773e50060a7f56eda4f4
- SHA1
  
  4ef4d983825e4248f7baf6e49f48662290d9e950
- SHA256
  
  5ebd017f6a273ec07cc6aabb0af11deb6f1ab266799ffd1709db755ac102b8f6
- SHA512
  
  fbf270523c80e6e17ce252324cc83b60ccdebbe33c73d185fedba8125173b192b983b44d3267ce20457b30881ba3d26c032bd4f6cbd8b6133f4caa5a3d7596a3
- SSDEEP
  
  384:flGzV0z3vNhSM/2z8l8rsa8msMp8hs8c87sT8DsD8hss8as98vXZ:tb/s8l8rsa8msS8hs8c87sT8DsD8hssH
Score

1^/10
behavioral4
- Target
  
  bin/login
- Size
  
  13KB
- MD5
  
  795023cc90ffb2af2c498f7ea9e3632c
- SHA1
  
  7b34b7a5a05918a826246beb494501517f77b39d
- SHA256
  
  3a516f77ad4094df71a741b58da703f7544e7dfd538fb500e9564bc26b9e8628
- SHA512
  
  0f6e61c51262d847aaa9dc8102fd2456c4560559e031d4c9fbc739e21fa4a372ef619a545a059834e6b0b59b190490fca534d37b46bb33384a4e03367116846f
- SSDEEP
  
  192:fMezuHlv6OYjFVrPWxu3v3Zf15v2/PU0chcmJxHhm:fMl6OYjFVqu3v3Zf15v2/wh94
Score

1^/10
behavioral5
- Target
  
  bin/md5sum
- Size
  
  30KB
- MD5
  
  f7acbc61f8715bdda41989683bc8e8a8
- SHA1
  
  082f99da99198e0cd9fcd14f2511cfb0e9eded60
- SHA256
  
  89b68f8ea6a32d525fbf491878980180ffa395b042ea3104b11da229bade71db
- SHA512
  
  07811d746f3e64d4e9525c920614feef3f05e8afa3ce4fd6fa95322ed4a776da4b17a3e80f76bfe6df9af62e30b35dd4fcd7f43655caccc1f8329a2aae873f95
- SSDEEP
  
  768:XGvMMSWAAX404vG0CUDjfDLLLLT04Z4C:XGv9jt0CUDjLLLLLTKC
Score

1^/10
behavioral6
- Target
  
  bin/netstat
- Size
  
  52KB
- MD5
  
  195075782a2f7853731bf3e0c62e6925
- SHA1
  
  3fb2b2713e99bbf8a9a0700ecbc823d060c3d0b7
- SHA256
  
  39823089fa324ceba00d5939d2e7b308fec28ee0f16c6caa4739a53ad6ecee64
- SHA512
  
  2629068705693eb4333eaadf6bde41d3f53163ba463ebd35a8726efbddd9a3e5d787211870ce052af1e52ab3e496fe57599103ee3bc0deac7836be473b9dd49e
- SSDEEP
  
  768:SJDe9bZJmH7nRtpJDFSZDDPe01TIb73o/73erPINCUDUPWf5Ts3fU1K5BEEP6:SsxZJmbvPQD447swhWffcEP6
Score

1^/10
behavioral7
- Target
  
  ssh
- Size
  
  190KB
- MD5
  
  75f257bc76acf904e93ecde06c7f440e
- SHA1
  
  ed74ba016f06397cd1ee4bdd9401c424b48e237f
- SHA256
  
  03f831dfeeeade9dcac62e1eaad959c7714d7a40cb8c5727167c069f2836415f
- SHA512
  
  c139319481c79b410b148bce7ef9a67115c7ac3bfcdd827a67fbc49d3857b6fb61fda750c3c0e7c46332767817f754363900013302e5a3b6d84f0697505a5568
- SSDEEP
  
  3072:KNLJxCEiak08uprU4kIchEwq/UUYMqdHCRh+Nt06dYV+55WOSUg//1B1j4ClBA:KNL6Eiaw2rnCq/UtMqdiRQNtzYV+5Uhx
Score

1^/10
behavioral8
- Target
  
  .sh/ssh_host_key.pub
- Size
  
  329B
- MD5
  
  6eab14e3ccff6032c0cdee83e09b2308
- SHA1
  
  8fdcc566d08678a0ed41a92717f6132c06e09041
- SHA256
  
  b869b4f7ac7a4c5995fc5b147fb581239623fb2819a85c80a26bed69483aed60
- SHA512
  
  5058829454e25d8975ab993bcb94064b96b01ccd96daf477829bd6674cb85cb4d2e521652c2a6b8a95214690e6f5aa85faaa0fb3683c1d0a2f7d209f67e0d83b
Score

4^/10
behavioral10 behavioral9
- Target
  
  .sh/sshd
- Size
  
  94KB
- MD5
  
  be8d12fb7f76b4fc632d1da89481a3c1
- SHA1
  
  721bad162c5d7a2b39abbf632d26eaf50f2b847a
- SHA256
  
  67789237dbec28fe063311380ec73367a19525af2bd6d27faf9cc9f7dac430c4
- SHA512
  
  6c054648de2055b2d270b91a5a0312669738c1b584312cfdb9fc50b30683837ca5ccfc484fc446abd9ff31bc802c481c650434124629fe86f7d534f9e70f53f8
- SSDEEP
  
  1536:UXCimJbgPtY1FswBvWKw1EsVP5o/dYYtcnheXL+er9DCbzP/T2FP3cmJuOyFHaiK:Q+J9FXvRgEsVP5KueXLVrd4XSNjJWZp4
Score

1^/10
behavioral11
- Target
  
  bin/ttymon
- Size
  
  91KB
- MD5
  
  60af3eff56c7cecad260785a7a61be10
- SHA1
  
  07f1d8605cf2208b005209def4980ec1be4bdd61
- SHA256
  
  5cba4433237e2ff202a5b20aad00a12d25bfc5564c3620a9463767eec2150cc1
- SHA512
  
  e374f018c0372c67b1d113b92c921cdc071e4e8d0b7ce2b5b3fe6c1dd647f0383adbc3870b5601403ea5f651c06fd89610aa9507da24e8b0521ddf7a7ce90a13
- SSDEEP
  
  1536:JUXmDBSnIOVmy/dhtB84Uje+mpir9GXIpziD5QfpTXHss5BrrrcZCF+3ho0La0m:amVJ2H70eXipGXIpK5QxTnvcMF+3A0
Score

1^/10
behavioral12
- Target
  
  clean
- Size
  
  7KB
- MD5
  
  9b6f4bedf22cbb0da07ee77423c652b6
- SHA1
  
  d15cb5d54b947549348da0eb50fae9cae52193e3
- SHA256
  
  da4d571d0c5fcf601063107a2fb02275d8cae91bb767e241b06ce616d15006fd
- SHA512
  
  500d74c438040b4af6321e2913cf20607b4036d9bbc6bca56733b467ce156cbcfc377a0eab912db3ec361d22d548ef86fe0f6999370cb7d489d4a32303d40feb
- SSDEEP
  
  96:f9Zuz2itAPe88obCLTeGmuMF3Re1JAZy4uyr21czwqDlwXjzeN2Obq:f2zCPAobLY1JAdGtquTaNjbq
Score

1^/10
behavioral13
- Target
  
  lib/libproc.so
- Size
  
  37KB
- MD5
  
  8581544643145cd159e93df986539ce8
- SHA1
  
  10acd89b2970524a922f21e67294a1fe09e0935d
- SHA256
  
  99894eed0cbfe1a93ebfd0853c86fb0c0953f567c606f721dacb1c247dd16bea
- SHA512
  
  2b25e71f6924f67d9642474580b9709268bc87ed4c744bc9d331129bd2e7df1f57c1faed7be20034234dec6df1dbc2bacd680af172f4e16e497dae23e85ca15a
- SSDEEP
  
  768:Sy/ZFeOfTRlHCcyTmkV9ptuKs8VTT1ordCNFTQIej6R6lAQJZF:1/ZQOtXUVFJ1VTT1a+R6qQJZF
Score

1^/10
behavioral14
- Target
  
  lib/libproc.so.2.0.6
- Size
  
  37KB
- MD5
  
  8581544643145cd159e93df986539ce8
- SHA1
  
  10acd89b2970524a922f21e67294a1fe09e0935d
- SHA256
  
  99894eed0cbfe1a93ebfd0853c86fb0c0953f567c606f721dacb1c247dd16bea
- SHA512
  
  2b25e71f6924f67d9642474580b9709268bc87ed4c744bc9d331129bd2e7df1f57c1faed7be20034234dec6df1dbc2bacd680af172f4e16e497dae23e85ca15a
- SSDEEP
  
  768:Sy/ZFeOfTRlHCcyTmkV9ptuKs8VTT1ordCNFTQIej6R6lAQJZF:1/ZQOtXUVFJ1VTT1a+R6qQJZF
Score

1^/10
behavioral15

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15