bcde886228ab449fb9bf8d759fc96718c7efeaa54f8e95eb0bc8c7d4e0d78a1b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d7160d1deaa5dd881953944488198b2f_JaffaCakes118
Size

159KB
Sample

240909-zt2ajszdmp
MD5

d7160d1deaa5dd881953944488198b2f
SHA1

2839f2660419df0924cc00b1ffeefa409b67b976
SHA256

bcde886228ab449fb9bf8d759fc96718c7efeaa54f8e95eb0bc8c7d4e0d78a1b
SHA512

7da6570a242135834ff896cedae5d45aaeabf0b082f688d6fe8ec55000f766053d64302f6eb467a31da5046abed907a641211c3675a0a6c8fd62760ab9214d7c
SSDEEP

3072:0uNywZRWLWAaifVI2cadhQB6dBHyvmheL4j/PYcpE/7HBTa:0oyBVIJadTXHyvmheL4j/PYcpE/7HBTa

Score

6^/10

discovery linux

Malware Config

Targets

- Target
  
  d7160d1deaa5dd881953944488198b2f_JaffaCakes118
- Size
  
  159KB
- MD5
  
  d7160d1deaa5dd881953944488198b2f
- SHA1
  
  2839f2660419df0924cc00b1ffeefa409b67b976
- SHA256
  
  bcde886228ab449fb9bf8d759fc96718c7efeaa54f8e95eb0bc8c7d4e0d78a1b
- SHA512
  
  7da6570a242135834ff896cedae5d45aaeabf0b082f688d6fe8ec55000f766053d64302f6eb467a31da5046abed907a641211c3675a0a6c8fd62760ab9214d7c
- SSDEEP
  
  3072:0uNywZRWLWAaifVI2cadhQB6dBHyvmheL4j/PYcpE/7HBTa:0oyBVIJadTXHyvmheL4j/PYcpE/7HBTa
Score

6^/10

discovery
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1