051fef99d3b916ac7280a380a68173a540fa50d323de31d4f75e267dfcf81782 | Triage

Sharing

General

Target

ad9fa66f178f42b363ff818699d78bf9_JaffaCakes118
Size

109KB
Sample

240820-devnkazgkh
MD5

ad9fa66f178f42b363ff818699d78bf9
SHA1

9406c8b73ccaaa4b18c72b4df822202f1071b064
SHA256

051fef99d3b916ac7280a380a68173a540fa50d323de31d4f75e267dfcf81782
SHA512

1731048d27ef46fd0c5d0ae22f61b820c8646ffea18f1c6a373f194c035d923016ae31b13bb57e191cb05ad807b46f8cee84ea3d78ed4f62ae8785568e60b17a
SSDEEP

3072:Qs0fP07par66lZcONNN8HdhQj0imZ901XGXg9Px:0X0NarBvzx8HdbimZ901XGXg9Px

Score

6^/10

linux

Malware Config

Targets

- Target
  
  ad9fa66f178f42b363ff818699d78bf9_JaffaCakes118
- Size
  
  109KB
- MD5
  
  ad9fa66f178f42b363ff818699d78bf9
- SHA1
  
  9406c8b73ccaaa4b18c72b4df822202f1071b064
- SHA256
  
  051fef99d3b916ac7280a380a68173a540fa50d323de31d4f75e267dfcf81782
- SHA512
  
  1731048d27ef46fd0c5d0ae22f61b820c8646ffea18f1c6a373f194c035d923016ae31b13bb57e191cb05ad807b46f8cee84ea3d78ed4f62ae8785568e60b17a
- SSDEEP
  
  3072:Qs0fP07par66lZcONNN8HdhQj0imZ901XGXg9Px:0X0NarBvzx8HdbimZ901XGXg9Px
Score

6^/10
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1