Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

684b0377d2...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    154s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240523-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    29/07/2024, 23:47 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    684b0377d255053e2a7cc9488df65b10_JaffaCakes118

  • Size

    1.1MB

  • MD5

    684b0377d255053e2a7cc9488df65b10

  • SHA1

    c96d74ff06edb312042e32e69e0da30f1fd1bba1

  • SHA256

    0328bafc79ccee14746b277764fff5239c7b2c5fa5fd36edf48501a7810e6990

  • SHA512

    8d3a8777fb4fbd65ac307d3ab033f30f3438c352efb7ac32bff63d45557f4e3a183fca0d9559ad34595d39e2c602c5f828b3d5c05eb4f74be73f3146a7e17ff0

  • SSDEEP

    24576:4vRE7caCfKGPqVEDNLFxKsfaqI+gIGYuuCol7r:4vREKfPqVE5jKsfaqRHGVo7r

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 37 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/684b0377d255053e2a7cc9488df65b10_JaffaCakes118
    /tmp/684b0377d255053e2a7cc9488df65b10_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2821

Network

    No results found
  • 27.255.66.175:25000
    660 B
     11
  • 27.255.66.175:25000
    420 B
     7
  • 224.0.0.251:5353
    146 B
     2

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/DbSecuritySpt
    Filesize

    64B

    MD5

    819f4c55c1231b506baabe3bf9441c5e

    SHA1

    25f1a2959a087ecac8f5cd46fdc697451988cd0b

    SHA256

    3aad1c05f90d6c4ffddef5143e2a5ca1f3ad4ee935d0d71a86ea0b3d35ef2084

    SHA512

    e2ab2a434a7802e7c3cb5f898a8c6c2ed96a2a0d7957e0070b31da392d2591e658d221a77224b1d31aaeb5ede54ac51fa0f5c69bc512182bd5930140dda87d4a

    Download Submit

  • /tmp/conf.n
    Filesize

    69B

    MD5

    630ba862c8b9bf006ee0380da444dfcc

    SHA1

    85efab92cb854001cbeca97ae02d3d800fd05f39

    SHA256

    4c5e3d88fe1cd02bb5a64a5a1c53f038d7483428193a34f3351c2272b5a8cc1b

    SHA512

    3767637c4e292b2629d8895965cd9cccf8890603e182e6f6f48a2b5d044d7e0a4c5c537d67dfb6e7a5bf9d6edc2b71a39ccf797d18ca47559abb022eb664a93a

    Download Submit

  • /tmp/gates.lock
    Filesize

    4B

    MD5

    0172d289da48c48de8c5ebf3de9f7ee1

    SHA1

    a0a9980a2b2b56651a64cd98df83af7670010128

    SHA256

    29923c8dc8abaca7ea7e4a08adefe252c74784a33ea0544a105c58dbb6c78607

    SHA512

    859343c90d9088f6398b9997b32678b8d54c73522fc4b9e99ff65aee65237cb4347133266f1eac6021b34fdcf2ba57b92214ee6466b6f9346040f8528f97a3b5

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    31e58b6c87584b510eadf4e5ae2ae724

    SHA1

    38fa2e35869dad7578052fa1a6c8d85ff6d57cd2

    SHA256

    a6f5ffbf0f3a4c188e98d8743fee7b21b3c6b99168f4e9a03f7af243bd342004

    SHA512

    bb0a2dcfc014a46d4052957c312c6fef667b90e2f7a64eef9a708dd8ec2a25c36147ee0a54d6cb626e1365bc4560ff7080cb578a52399f87cade26b7b74cc985

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.