Overview

overview

10

Static

static

10

d4b4f8c71c...kes118

ubuntu-22.04-amd64

6

Analysis

  • max time kernel
    140s
  • max time network
    150s
  • platform
    ubuntu-22.04_amd64
  • resource
    ubuntu2204-amd64-20240611-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2204-amd64-20240611-enkernel:5.15.0-105-genericlocale:en-usos:ubuntu-22.04-amd64system
  • submitted
    08-12-2024 01:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d4b4f8c71ccb4a89e3f75e0d83104df1_JaffaCakes118

  • Size

    153KB

  • MD5

    d4b4f8c71ccb4a89e3f75e0d83104df1

  • SHA1

    9637dc734dbecb649187a26837e51fadf3acbea6

  • SHA256

    0654f3a364659e19de48649df99ee7713aad5cf4734e77108764c0007abbf57f

  • SHA512

    0e85aec1c4a244fe20f399ece350d00015627c955f59a4e91a64b69df2522cf36397bfeb784cd60b3fe8b9c10541566d1d3739f79097b67f23fa15f9348ae146

  • SSDEEP

    3072:XlEoRSgLyZrVvnNYd+soZS9BF7OlV5BZ8fR1c9OXH90PfNatph1:X6oR5+qwS9BFylhK51ckXH90PfNatph1

Score
6/10
discovery

Malware Config

Signatures

  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

    discovery
  • Changes its process name 1 IoCs
  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

    discovery

Processes

  • /tmp/d4b4f8c71ccb4a89e3f75e0d83104df1_JaffaCakes118
    /tmp/d4b4f8c71ccb4a89e3f75e0d83104df1_JaffaCakes118
    1⤵
    • Reads system routing table
    • Changes its process name
    • Reads system network configuration
    PID:1587

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads