Overview

overview

10

Static

static

10

2165215682...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    149s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240729-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240729-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    28-07-2024 20:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    21652156824d4a074e1b690d4f6bfad7_JaffaCakes118

  • Size

    1.2MB

  • MD5

    21652156824d4a074e1b690d4f6bfad7

  • SHA1

    43f2d4779ee62982f574143e86cb95c65e1fdd49

  • SHA256

    0f59819c0394537dc96ff243c24d432fc47f44fc72cfc4ccba43c8e5bde8bcf2

  • SHA512

    7298344489af32ab2d967200ed70eea00096090d09e809d9288d3a5945b108abcd1ca2a939941eb4b040972a243c2ba3990ec20d2744caa11fdf125e77dc22d4

  • SSDEEP

    24576:e845rlHu6gVJKG75oFpA0VW/X4G2y1q2rJp0:745wRVJKGtSA0VW/oVu9p0

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 43 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/21652156824d4a074e1b690d4f6bfad7_JaffaCakes118
    /tmp/21652156824d4a074e1b690d4f6bfad7_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2490

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/DbSecuritySpt
    Filesize

    64B

    MD5

    8f98e18e3e9d1097933d8e63fb5e4d60

    SHA1

    15fef73c595ec1385ce4dd46f3526dd34910ca7b

    SHA256

    855d6efe9f722a465b549233ad564bc93b7534e2dc01fc8f00862ca1cc5aa8f5

    SHA512

    df6f7a08a41aed030a091a8d48904595c10e39e0c6708f02134b56d5db4ef2043cd385c952cf329c85f720cd76b7a37dfab2e50200d56ea9cbbb77fb050d65a0

    Download Submit

  • /tmp/conf.n
    Filesize

    73B

    MD5

    e21e060f8d661479da3313282ac5cd55

    SHA1

    9007d62e9cf29cbc36e28c493641206d7248bfc9

    SHA256

    6a545889243495954942484788847b98efa065c06d69bd75205d930f4ed84c5d

    SHA512

    1878e5c104b8c9f8bf724064a881a7218f30fa23cb5ba76d37dfd743cfab5603603cf595af65ddedd855cfe31188a6678b7ecc06302b0d3f27ac9873f14ff426

    Download Submit

  • /tmp/gates.lod
    Filesize

    4B

    MD5

    46515dcd99ea50dd0671bc6840830404

    SHA1

    de71d0d4c989687b5589d77541ba52fe72d33099

    SHA256

    bebcee2abff6b6f2e04afac2869e7edec0bf441979a6b183b430f9e1e3d7b9c0

    SHA512

    907b3d9d881584c8643cbd9cea41d6736271123794a35786e724bbb6eedc260a966eaa1501e3a6928a3ad894f1d31f276f8b61a34e3b111e7c163113b6579035

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    43247d65f3d2393f6f6bd6de694cb43b

    SHA1

    732700a06fc38de55872622e2171b55980e24ddd

    SHA256

    06452cd9da38de571add44b182e405e19a6a6b371b81b77aace3f1019a4fce68

    SHA512

    21ab658f3bee3d3b77d928525abe56a2d697921a6e8cb185090a1ddad6ab5c62444093ea4b966b0cc4c22e09edebabc20189608f15564464c03ef82a21658192

    Download Submit