General
-
Target
cea619f462b2c8c3f10a1797ac219033_JaffaCakes118
-
Size
537KB
-
Sample
240906-e133hawdmm
-
MD5
cea619f462b2c8c3f10a1797ac219033
-
SHA1
fb202ad62b1e442ad9360252f5f04e3d65d70942
-
SHA256
aab71f212e56657d6e7892e5a0c8706e9a38d779637a1ddb63d19b6b8a1b3f2c
-
SHA512
dfc51d4c5b8457d960a24900fb6f701f39a82fc6fd19135df95357c28ea4d92517bae3b5655579a3fc181062c0cc0884d379ec8886a731f7d09824451028a942
-
SSDEEP
12288:YlEcxo05kz84ZyNVw82dWenMsECdg4xK4r3lGGPItHrhxx:YDkoTA82EsFK4Q0It9
Static task
static1
Behavioral task
behavioral1
Sample
cea619f462b2c8c3f10a1797ac219033_JaffaCakes118
Resource
debian9-armhf-20240418-en
Malware Config
Targets
-
-
Target
cea619f462b2c8c3f10a1797ac219033_JaffaCakes118
-
Size
537KB
-
MD5
cea619f462b2c8c3f10a1797ac219033
-
SHA1
fb202ad62b1e442ad9360252f5f04e3d65d70942
-
SHA256
aab71f212e56657d6e7892e5a0c8706e9a38d779637a1ddb63d19b6b8a1b3f2c
-
SHA512
dfc51d4c5b8457d960a24900fb6f701f39a82fc6fd19135df95357c28ea4d92517bae3b5655579a3fc181062c0cc0884d379ec8886a731f7d09824451028a942
-
SSDEEP
12288:YlEcxo05kz84ZyNVw82dWenMsECdg4xK4r3lGGPItHrhxx:YDkoTA82EsFK4Q0It9
-
Attempts to change immutable files
Modifies inode attributes on the filesystem to allow changing of immutable files.
-
Creates/modifies Cron job
Cron allows running tasks on a schedule, and is commonly used for malware persistence.
-