Overview

overview

6

Static

static

1

fbb33eb811...kes118

ubuntu-20.04-amd64

6

Analysis

  • max time kernel
    140s
  • max time network
    149s
  • platform
    ubuntu-20.04_amd64
  • resource
    ubuntu2004-amd64-20240611-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2004-amd64-20240611-enkernel:5.4.0-169-genericlocale:en-usos:ubuntu-20.04-amd64system
  • submitted
    28-09-2024 06:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fbb33eb811f77a92d43f642b0f91582b_JaffaCakes118

  • Size

    127KB

  • MD5

    fbb33eb811f77a92d43f642b0f91582b

  • SHA1

    bca2ab1f206f717dbbe2f6eb66264dff021dfc7c

  • SHA256

    f6de2e4eec0f5c8faa3e7b974a65f0d1821b1773a3ddefed3d79f3582a63bdde

  • SHA512

    535ea92e164e20f0e4505953d49914a7c9a3baa6277781bc36494df58167a0dbbefadc4f8d23debdc5339255689c7d91dff647474bf64d2a4f077e41cf27ea8a

  • SSDEEP

    3072:pjcFvwftVc49xo4Jj9xC2DMChEoZe3Fp4YeRlVUncRSdws:DB9TCTMmreRlVUncRSdws

Score
6/10
discovery

Malware Config

Signatures

  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

    discovery
  • Changes its process name 1 IoCs
  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

    discovery

Processes

  • /tmp/fbb33eb811f77a92d43f642b0f91582b_JaffaCakes118
    /tmp/fbb33eb811f77a92d43f642b0f91582b_JaffaCakes118
    1⤵
    • Reads system routing table
    • Changes its process name
    • Reads system network configuration
    PID:1409

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads