Analysis
-
max time kernel
155s -
max time network
165s -
platform
debian-12_mipsel -
resource
debian12-mipsel-20240418-en -
resource tags
arch:mipselimage:debian12-mipsel-20240418-enkernel:6.1.0-17-4kc-maltalocale:en-usos:debian-12-mipselsystem -
submitted
29-07-2024 18:00
Behavioral task
behavioral1
Sample
5740590bee1f9ed9116da054b7b555e7_JaffaCakes118
Resource
debian12-mipsel-20240418-en
debian-12-mipsel
2 signatures
150 seconds
General
-
Target
5740590bee1f9ed9116da054b7b555e7_JaffaCakes118
-
Size
233KB
-
MD5
5740590bee1f9ed9116da054b7b555e7
-
SHA1
f9c1259415a35b87c205e10e8d98637e8eb5818b
-
SHA256
737131a241981e21e3a6e4c93e27281d9e96dd395b3719a7d115755b42196e6d
-
SHA512
ec15706dc5653baf4f6861c3a46fece6e6163edd84a3764375b94e45231090e0297136f2086921b9a52bb59c7a83a170c20c58595a8dfef31a605b8d9dc5e6c3
-
SSDEEP
6144:EfbGWsOvmg5Mk3AydWsmVfdClLGaMbvuVoPjHj+:EiWsOvVAnsmVfdClLGaMbvuVoPjHj+
Score
6/10
Malware Config
Signatures
-
Enumerates running processes
Discovers information about currently running processes on the system
-
Reads runtime system information 64 IoCs
Reads data from /proc virtual filesystem.
description ioc File opened for reading /proc/397/comm File opened for reading /proc/713/comm File opened for reading /proc/1/comm File opened for reading /proc/23/stat File opened for reading /proc/23/comm File opened for reading /proc/34/stat File opened for reading /proc/137/comm File opened for reading /proc/705/stat File opened for reading /proc/731/stat File opened for reading /proc/4/comm File opened for reading /proc/11/comm File opened for reading /proc/19/stat File opened for reading /proc/26/comm File opened for reading /proc/35/comm File opened for reading /proc/710/stat File opened for reading /proc/713/stat File opened for reading /proc/679/stat File opened for reading /proc/730/stat File opened for reading /proc/14/stat File opened for reading /proc/28/stat File opened for reading /proc/34/comm File opened for reading /proc/113/comm File opened for reading /proc/380/comm File opened for reading /proc/2/stat File opened for reading /proc/16/comm File opened for reading /proc/114/comm File opened for reading /proc/136/comm File opened for reading /proc/341/comm File opened for reading /proc/721/comm File opened for reading /proc/7/comm File opened for reading /proc/37/comm File opened for reading /proc/381/stat File opened for reading /proc/680/comm File opened for reading /proc/6/comm File opened for reading /proc/7/stat File opened for reading /proc/30/stat File opened for reading /proc/680/stat File opened for reading /proc/9/comm File opened for reading /proc/732/stat File opened for reading /proc/2/comm File opened for reading /proc/8/stat File opened for reading /proc/22/comm File opened for reading /proc/42/stat File opened for reading /proc/111/comm File opened for reading /proc/118/comm File opened for reading /proc/413/comm File opened for reading /proc/717/comm File opened for reading /proc/10/comm File opened for reading /proc/25/stat File opened for reading /proc/53/comm File opened for reading /proc/348/stat File opened for reading /proc/697/stat File opened for reading /proc/698/comm File opened for reading /proc/27/comm File opened for reading /proc/30/comm File opened for reading /proc/112/comm File opened for reading /proc/413/stat File opened for reading /proc/31/stat File opened for reading /proc/35/stat File opened for reading /proc/42/comm File opened for reading /proc/435/stat File opened for reading /proc/679/comm File opened for reading /proc/12/stat File opened for reading /proc/13/stat