Overview

overview

10

Static

static

10

JaffaCakes...97664e

ubuntu-22.04-amd64

6

Analysis

  • max time kernel
    120s
  • max time network
    136s
  • platform
    ubuntu-22.04_amd64
  • resource
    ubuntu2204-amd64-20240611-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2204-amd64-20240611-enkernel:5.15.0-105-genericlocale:en-usos:ubuntu-22.04-amd64system
  • submitted
    11-01-2025 02:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    JaffaCakes118_f43626a685857250c80037c7e197664e

  • Size

    130KB

  • MD5

    f43626a685857250c80037c7e197664e

  • SHA1

    04beec7aa9d70f81ee473e3943e9e0d2b5aeb87a

  • SHA256

    be43b970b155f0c67359c3f334be3de3c89ff8eb7d9b5e029cd3debcabe9c65b

  • SHA512

    849fab71e5286e19cbbdad69f5fd6eda53c0cd11dc321705370295eccb7744c43d2c82b737f5e93f4cd56e99d3dbdf1ea926eacd0c47d1df5be2496365d3e0e0

  • SSDEEP

    3072:Kx0bkx0PU/dVRPDeVRapj4Ju023etJ8add9QzTscdcxtOoct47KcX6GcgqBK:fEDeSmT23etJ8addQ2tWt47KcXJcgqBK

Score
6/10
discovery

Malware Config

Signatures

  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

    discovery
  • Changes its process name 1 IoCs
  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

    discovery

Processes

  • /tmp/JaffaCakes118_f43626a685857250c80037c7e197664e
    /tmp/JaffaCakes118_f43626a685857250c80037c7e197664e
    1⤵
    • Reads system routing table
    • Changes its process name
    • Reads system network configuration
    PID:1563

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads