Overview

overview

10

Static

static

10

19b583119f...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240729-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240729-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    28-07-2024 17:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    19b583119fd324980e5571809c445b6e_JaffaCakes118

  • Size

    1.2MB

  • MD5

    19b583119fd324980e5571809c445b6e

  • SHA1

    0b9d1cb853fa8125b107a445399c462afdec1103

  • SHA256

    cecbbb2ee3d3f36fbaabc5978409b87bd2a0230a8af4f3cd5c64502ccbcf4b15

  • SHA512

    d337e37c4de6c8b8380ef799bd309799376967f97eb27fb71367994b8fac6d4b761f7ff2fda00347aa57421221586782da566efd821512b2794a121b24a4e9eb

  • SSDEEP

    24576:e845rGHu6gVJKG75oFpA0VWeX4+2y1q2rJp0:745vRVJKGtSA0VWeo9u9p0

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 43 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/19b583119fd324980e5571809c445b6e_JaffaCakes118
    /tmp/19b583119fd324980e5571809c445b6e_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2425

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/DbSecuritySpt
    Filesize

    64B

    MD5

    3a084c0c587a1de4d6e150f257003c46

    SHA1

    e0966bec39944aa97e52943b1a1d7d6e0da5fb6f

    SHA256

    e9040b996b8a83ba129f30ca09b0eb1d498ad7aa969e06300d0ca59fb35359ca

    SHA512

    719d78f773cc0ad3802e4d0c5cb9564ed447d69f3b125855125690dee6d04a22024b6f2496d45fcf6b2ac8788dddd1ac0612827e0b9eae15f1952b38486aad43

    Download Submit

  • /tmp/gates.lod
    Filesize

    4B

    MD5

    cc0991344c3d760ae42259064406bae1

    SHA1

    de35063a36ff0e4fbdb75c337589668ad4de8374

    SHA256

    3d93ec274ab8ebaa470a8294089ff8a2936ce457c7e0f8465a74d7dffa3df320

    SHA512

    e9fb21e9b7cf6615a9dfd514ed16fa1d9b7c95202f4cbc57c272d09b8c52fad3a79c0dca16f7597d0a77bff99313e41b579c6e239f157e212c16005d902846b7

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    7234ed30a140fa106ae82f8cd371a371

    SHA1

    1c11338bc543858d9c0bce7fa56ae4f9fa3c7bfc

    SHA256

    9585da0f43f735fee05b520a5829a9bc9a32c2d8971884ddf93b0f20d168ceba

    SHA512

    25f3dff73edebda1b64d6695cd9868c3eeda78038014a637ecfbbc68d753a5e1dcf016b3eba311425d16e95636f86a1bbfa6cb2f762a34ea53611dc1d22be36a

    Download Submit