Overview

overview

10

Static

static

10

de6bd4cf60...kes118

debian-12-armhf

3

Analysis

  • max time kernel
    121s
  • max time network
    135s
  • platform
    debian-12_armhf
  • resource
    debian12-armhf-20240221-en
  • resource tags

    arch:armhfimage:debian12-armhf-20240221-enkernel:6.1.0-17-armmp-lpaelocale:en-usos:debian-12-armhfsystem
  • submitted
    10/12/2024, 20:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    de6bd4cf60a0d8bf44d80345b7611123_JaffaCakes118

  • Size

    4.5MB

  • MD5

    de6bd4cf60a0d8bf44d80345b7611123

  • SHA1

    e0d832ba70fedc48ab0b347c8b032ae0b798dd43

  • SHA256

    cc112184b17d65229ce20487d98a3751dceb3efbee7bf70929a35b66416ae248

  • SHA512

    a4a1b22104c82e9ebc0dc50d7aeed922a129f9c962a03d3ef3d6d7889183d24074e1acd18abdd2670a834976276bd9245793476319b1e18ac74c30539c7b2db3

  • SSDEEP

    49152:frO0RuO6QtIIySbKXYkbTPb+HGKuAb7/C:DO0QOJtzFeXNbq/C

Score
3/10
discovery

Malware Config

Signatures

  • Enumerates kernel/hardware configuration 1 TTPs 1 IoCs

    Reads contents of /sys virtual filesystem to enumerate system information.

    discovery
  • Writes file to tmp directory 1 IoCs

    Malware often drops required files in the /tmp directory.

Processes

  • /tmp/de6bd4cf60a0d8bf44d80345b7611123_JaffaCakes118
    /tmp/de6bd4cf60a0d8bf44d80345b7611123_JaffaCakes118
    1⤵
    • Enumerates kernel/hardware configuration
    • Writes file to tmp directory
    PID:703

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads