Overview

overview

6

Static

static

1

ef62b099e9...kes118

ubuntu-18.04-amd64

6

Analysis

  • max time kernel
    140s
  • max time network
    150s
  • platform
    ubuntu-18.04_amd64
  • resource
    ubuntu1804-amd64-20240611-en
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-20240611-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    21/09/2024, 08:11

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    ef62b099e9c21b866ffaf51569d57407_JaffaCakes118

  • Size

    72KB

  • MD5

    ef62b099e9c21b866ffaf51569d57407

  • SHA1

    bb759b48929340d27bfa33508a6d2cee250264ad

  • SHA256

    90af3cf74070c6b0df0fb4f86a1df7d29ac4b259904daf89d3ca2e52791e7db9

  • SHA512

    ebb9b8ce0271ba407902f4024eaa56a7a1138acc9e59bb6f8537a0eabc697b65446168752c60544c72bd2637030e5f854f86507238f401704cf12c5cecf67071

  • SSDEEP

    1536:8p4uw66yastO49zyje4MkJLwDnOD8J52rf3BstzWT/O/saw2U59RLZ5:8pV6R+x9zyje4MkJLwDnOD8mrfRSzO/T

Score
6/10
discovery

Malware Config

Signatures

  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

    discovery
  • Changes its process name 1 IoCs
  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

    discovery

Processes

  • /tmp/ef62b099e9c21b866ffaf51569d57407_JaffaCakes118
    /tmp/ef62b099e9c21b866ffaf51569d57407_JaffaCakes118
    1⤵
    • Reads system routing table
    • Changes its process name
    • Reads system network configuration
    PID:1505

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads