Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

684b0377d2...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    154s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240523-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    29/07/2024, 23:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    684b0377d255053e2a7cc9488df65b10_JaffaCakes118

  • Size

    1.1MB

  • MD5

    684b0377d255053e2a7cc9488df65b10

  • SHA1

    c96d74ff06edb312042e32e69e0da30f1fd1bba1

  • SHA256

    0328bafc79ccee14746b277764fff5239c7b2c5fa5fd36edf48501a7810e6990

  • SHA512

    8d3a8777fb4fbd65ac307d3ab033f30f3438c352efb7ac32bff63d45557f4e3a183fca0d9559ad34595d39e2c602c5f828b3d5c05eb4f74be73f3146a7e17ff0

  • SSDEEP

    24576:4vRE7caCfKGPqVEDNLFxKsfaqI+gIGYuuCol7r:4vREKfPqVE5jKsfaqRHGVo7r

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 37 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/684b0377d255053e2a7cc9488df65b10_JaffaCakes118
    /tmp/684b0377d255053e2a7cc9488df65b10_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2821

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/DbSecuritySpt
    Filesize

    64B

    MD5

    819f4c55c1231b506baabe3bf9441c5e

    SHA1

    25f1a2959a087ecac8f5cd46fdc697451988cd0b

    SHA256

    3aad1c05f90d6c4ffddef5143e2a5ca1f3ad4ee935d0d71a86ea0b3d35ef2084

    SHA512

    e2ab2a434a7802e7c3cb5f898a8c6c2ed96a2a0d7957e0070b31da392d2591e658d221a77224b1d31aaeb5ede54ac51fa0f5c69bc512182bd5930140dda87d4a

    Download Submit

  • /tmp/conf.n
    Filesize

    69B

    MD5

    630ba862c8b9bf006ee0380da444dfcc

    SHA1

    85efab92cb854001cbeca97ae02d3d800fd05f39

    SHA256

    4c5e3d88fe1cd02bb5a64a5a1c53f038d7483428193a34f3351c2272b5a8cc1b

    SHA512

    3767637c4e292b2629d8895965cd9cccf8890603e182e6f6f48a2b5d044d7e0a4c5c537d67dfb6e7a5bf9d6edc2b71a39ccf797d18ca47559abb022eb664a93a

    Download Submit

  • /tmp/gates.lock
    Filesize

    4B

    MD5

    0172d289da48c48de8c5ebf3de9f7ee1

    SHA1

    a0a9980a2b2b56651a64cd98df83af7670010128

    SHA256

    29923c8dc8abaca7ea7e4a08adefe252c74784a33ea0544a105c58dbb6c78607

    SHA512

    859343c90d9088f6398b9997b32678b8d54c73522fc4b9e99ff65aee65237cb4347133266f1eac6021b34fdcf2ba57b92214ee6466b6f9346040f8528f97a3b5

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    31e58b6c87584b510eadf4e5ae2ae724

    SHA1

    38fa2e35869dad7578052fa1a6c8d85ff6d57cd2

    SHA256

    a6f5ffbf0f3a4c188e98d8743fee7b21b3c6b99168f4e9a03f7af243bd342004

    SHA512

    bb0a2dcfc014a46d4052957c312c6fef667b90e2f7a64eef9a708dd8ec2a25c36147ee0a54d6cb626e1365bc4560ff7080cb578a52399f87cade26b7b74cc985

    Download Submit