Overview

overview

10

Static

static

10

05695de2a7...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    149s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240729-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240729-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    28-07-2024 01:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    05695de2a79ad7f6b747bb81ade36931_JaffaCakes118

  • Size

    1.2MB

  • MD5

    05695de2a79ad7f6b747bb81ade36931

  • SHA1

    867ffd5d9fc1a668d87f43fc2ac78b20e6b05080

  • SHA256

    65f78db9b3f2fdeab5efcb3dbaab2141785509902cd4449179eb62c4b9ae4ae6

  • SHA512

    0401b1f887cb6a78371503af35061b8ef04592781eb75eabfa9a50683fc260ba25c0761791605c27405d01cea303d870ca73478d65c57d6bcd6cb76d1aacb751

  • SSDEEP

    24576:e845rGHu6gVJKG75oFpA0VWIX4+2y1q2rJp0:745vRVJKGtSA0VWIo9u9p0

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 43 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/05695de2a79ad7f6b747bb81ade36931_JaffaCakes118
    /tmp/05695de2a79ad7f6b747bb81ade36931_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2440

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/DbSecuritySpt
    Filesize

    64B

    MD5

    a66d3380780f8171be1278b82fd9309c

    SHA1

    0a874174ef05ec477e6db998f3be3ca6bd85f8a0

    SHA256

    410011ee651196ac51ececf11020ca67c03a8989d14fb5f5cf8560361e614a1b

    SHA512

    7bb4a49b86b1b21467d6a4fffceb1a69034b8b45b33ac72a02ec3b009e075a1c94ce6ea2031f2be68d25410702170448cbba0cf15fc155fda71665a3c3212924

    Download Submit

  • /tmp/gates.lod
    Filesize

    4B

    MD5

    6048ff4e8cb07aa60b6777b6f7384d52

    SHA1

    93af2d29fceaaff90391bae9bfb5b4f18a50b2c9

    SHA256

    069170cf54b2e58a1057173196abf680efbeb5863deb2b59cbfe61f5faa735e6

    SHA512

    81374b04ca4a028d2f8c85153d5bf32a658d3b9643119629c07434cec764d2171fa24b2ac4996cd58befbdbf58bf03085c47f0f968ccd9b5d2e9d8cbedb0773f

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    5f5c201531fa9302a8ff38aa35f1db4b

    SHA1

    907571626a7111b95af163a7d903dca2f653aca2

    SHA256

    20d4f7f850dd1f5a1f79cba59702c10642feb840e501a8005aa3d4cda4f63644

    SHA512

    73ef119f5ee10fefa3720b16001dea9a7165b9675512a60a592596b97be864063640a0692d78d8e367d8d9eee6ea48c21d19c6c5332644cfa7e8ae90cc3a6af7

    Download Submit