91c8f8d6474ad5618cacfd0743c82cf63cf0154e22d0225a257b63dfd9c7bbc6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d082c8ef9c2a8c0ded9926582f443bd3_JaffaCakes118
Size

127KB
Sample

240906-1mkjwszanj
MD5

d082c8ef9c2a8c0ded9926582f443bd3
SHA1

bc3d8dd6fb8e870276f09e28e5f82f9ad60f6839
SHA256

91c8f8d6474ad5618cacfd0743c82cf63cf0154e22d0225a257b63dfd9c7bbc6
SHA512

6f4182aafa2fde63f184c4236d3e7c2918dc408ff6b2a28f4130828a9452ef54edd3f23ff3a314d70932054cf807d787a17a1ffae693c53270e5c58e51d1ba1a
SSDEEP

3072:R3cFOwftVc49xk4Jj9xC2DMChEoZW3ppEYeRlVUncRSdws:C99TCTMqHeRlVUncRSdws

Score

6^/10

discovery linux

Malware Config

Targets

- Target
  
  d082c8ef9c2a8c0ded9926582f443bd3_JaffaCakes118
- Size
  
  127KB
- MD5
  
  d082c8ef9c2a8c0ded9926582f443bd3
- SHA1
  
  bc3d8dd6fb8e870276f09e28e5f82f9ad60f6839
- SHA256
  
  91c8f8d6474ad5618cacfd0743c82cf63cf0154e22d0225a257b63dfd9c7bbc6
- SHA512
  
  6f4182aafa2fde63f184c4236d3e7c2918dc408ff6b2a28f4130828a9452ef54edd3f23ff3a314d70932054cf807d787a17a1ffae693c53270e5c58e51d1ba1a
- SSDEEP
  
  3072:R3cFOwftVc49xk4Jj9xC2DMChEoZW3ppEYeRlVUncRSdws:C99TCTMqHeRlVUncRSdws
Score

6^/10

discovery
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1