Overview

overview

10

Static

static

10

bd0f357d15...kes118

debian-9-armhf

6

Analysis

  • max time kernel
    149s
  • max time network
    148s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20240611-en
  • resource tags

    arch:armhfimage:debian9-armhf-20240611-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    03-12-2024 10:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bd0f357d152c1d8282f89b7ad8bac767_JaffaCakes118

  • Size

    153KB

  • MD5

    bd0f357d152c1d8282f89b7ad8bac767

  • SHA1

    09d18a5ef42d3debb0b8eb73fa34b4801f8f02a6

  • SHA256

    f49b095e2ff56469d1ab6f48ae43e256202233ea1f883547dc0d7ad67c41a2fa

  • SHA512

    9519d99aaddaeeffec3c86e73350d96f2e949c6798da2f42fe04e0189d4b1f4dc01a2dcc7ab5d09df1ff41b84cbe5f2bed0df464859dfea9d1d0e1c3ffe1ce6f

  • SSDEEP

    3072:ld3nbnHaWcrJ3xMby0dI8M5hYntKGiD9M/9QdnXkZm5wTsL/Qpyn:f3rHaWcrVxsdI95hYtKGixM/9QdXkZmp

Score
6/10
discovery

Malware Config

Signatures

  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

    discovery
  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

    discovery

Processes

  • /tmp/bd0f357d152c1d8282f89b7ad8bac767_JaffaCakes118
    /tmp/bd0f357d152c1d8282f89b7ad8bac767_JaffaCakes118
    1⤵
    • Reads system routing table
    • Reads system network configuration
    PID:656

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads