Overview

overview

10

Static

static

10

JaffaCakes...e42cdb

debian-9-armhf

6

Analysis

  • max time kernel
    140s
  • max time network
    158s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20240611-en
  • resource tags

    arch:armhfimage:debian9-armhf-20240611-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    09-01-2025 13:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    JaffaCakes118_c9c9ebb722340765d4d4177636e42cdb

  • Size

    157KB

  • MD5

    c9c9ebb722340765d4d4177636e42cdb

  • SHA1

    3d49c66363d0fdf8bed5400a4f0fa05b593b857d

  • SHA256

    41367fc31ee86f619a63ac70698a7be78fd174baa8fa7f1b4bfb16fea2ce1970

  • SHA512

    4abe12f7245b940c664756d411b6cb38e0b5591415b281b226c256cc92148b8044b8d10a47ff043808f9c14649048dff2f7cc91d4b5f5d7b011071ad078f3b01

  • SSDEEP

    3072:tp63mZTyWkCxUG0aSnlyuvnqpeM/9LgmFwfBxKQodn:S3mZTBkCqG0aObvnq4M/9LgmFwfBxxoB

Score
6/10
discovery

Malware Config

Signatures

  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

    discovery
  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

    discovery

Processes

  • /tmp/JaffaCakes118_c9c9ebb722340765d4d4177636e42cdb
    /tmp/JaffaCakes118_c9c9ebb722340765d4d4177636e42cdb
    1⤵
    • Reads system routing table
    • Reads system network configuration
    PID:649

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads