8beeed070f5cbb23464010f58038e4eecd3208e983e1af57aae5e5a013be2bd6

Analysis

max time kernel
140s
max time network
151s
platform
ubuntu-22.04_amd64
resource
ubuntu2204-amd64-20240611-en
resource tags

arch:amd64arch:i386image:ubuntu2204-amd64-20240611-enkernel:5.15.0-105-genericlocale:en-usos:ubuntu-22.04-amd64system
submitted
25-11-2024 16:38

Target

9cacd8e91631368be0415cac71c467fb_JaffaCakes118
Size

112KB
MD5

9cacd8e91631368be0415cac71c467fb
SHA1

b63af129454c0710c99693033170d3be7da0a972
SHA256

8beeed070f5cbb23464010f58038e4eecd3208e983e1af57aae5e5a013be2bd6
SHA512

0861aa516d6fa66dac8b5617a3362ab61d9b7c7dcf15f6a09f6eddd58320a762744df30df977b1d3f366f62842b19e8e7fae895b4b00ae429e55a7577d7a5baf
SSDEEP

3072:k0hNVUUwsdbfxFSd7XyzXetJ8au49QuTsTepXTdyOzTCYQFRt:kfWO7ybetJ8au4lgUXTdyOzTCYQFRt

Score

4^/10

Changes its process name 1 IoCs

description	pid	Process
Changes the process name, possibly in an attempt to hide itself	1579	9cacd8e91631368be0415cac71c467fb_JaffaCakes118

/tmp/9cacd8e91631368be0415cac71c467fb_JaffaCakes118
/tmp/9cacd8e91631368be0415cac71c467fb_JaffaCakes118
1⤵
- Changes its process name
PID:1579
- /bin/sh
  sh -c "echo DEATH"
  2⤵
  PID:1580