Overview

overview

10

Static

static

10

2f45ba3f2e...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    128s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240729-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240729-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    29-07-2024 01:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2f45ba3f2ea6cad5cc0f45f8de9bbe4f_JaffaCakes118

  • Size

    1.2MB

  • MD5

    2f45ba3f2ea6cad5cc0f45f8de9bbe4f

  • SHA1

    da52567c7406ae720e5fc6489868b4fae1a855d0

  • SHA256

    36195151c05923c5f267cd2f8f24747af9fa4e73efdc44029f0581591be3c542

  • SHA512

    fe0e3e2de301dfddec95ae76b4bd29df9ace6bf1447318a2f9022a9377d861e43d1518e95a3c56888d649698908a310cbc46a31b482fda882213a3705253f419

  • SSDEEP

    24576:e845rGHu6gVJKG75oFpA0VWIX4k2y1q2rJp0:745vRVJKGtSA0VWIoru9p0

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 43 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/2f45ba3f2ea6cad5cc0f45f8de9bbe4f_JaffaCakes118
    /tmp/2f45ba3f2ea6cad5cc0f45f8de9bbe4f_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2451

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/DbSecuritySpt
    Filesize

    64B

    MD5

    9a36d7dedc170308b8f9fca76c28dfaa

    SHA1

    46ec4e0ee3c3c18f1444b2e67a2c71e386f15a09

    SHA256

    01a3bc689a59e1efe6db0e643da7f57c551755d93b97725d305088f3dadd4f71

    SHA512

    a5bfae1ecb859d3ddbb52542b7bc8dd31ec52e14f42bb8f563de8ecd235267d09c9b31f4aa751dd8dd508c3cb0ee2d64b6a907983084ae80018f138b10e16255

    Download Submit

  • /tmp/conf.n
    Filesize

    73B

    MD5

    57f0e7feda2b78ef3ac04ff7ce863ff9

    SHA1

    b0ba9a64421520ddd785aff3b152b96c5cf5d83e

    SHA256

    fea79b6f43ae69732cf0873bd9a716787eec37f67dd49b5f096eabfbc3fa0a9e

    SHA512

    c7aa89addfdbebccf3c01cb87e65da9e5f109aaff2b89601df4c76362e97d25467171e58045854969507d60e9a3a0686a950208b7af5a0e99ec02a45c9597507

    Download Submit

  • /tmp/gates.lod
    Filesize

    4B

    MD5

    8c9f32e03aeb2e3000825c8c875c4edd

    SHA1

    caaa9552af2f6811278fe10f8f42beece2a72fdd

    SHA256

    3cb81c72e3c44a9c6a2fda94952ab34e0b0a89b0e7cfb6330ed371a0eda636bc

    SHA512

    0a8a03eff59f5db5abe8568bf5485b68a7458895b55084f788bec32bea00bfae8f35928726d3b2bca9d76ffb90fe00506f191004383d6ea78983294faf587331

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    b37e8be49566eaf1fcbbf8bff140c024

    SHA1

    6f676925e08c2c1d1ebf22107892c627ee1a26df

    SHA256

    5c5112582ae7387956405f087769f35a1140eb0ef43da389c652f8e854e71813

    SHA512

    4b6c56c507cedbbe5534419d55955a2d8ad617482f9a018fb772e48a682d2a782b8889c746aabb0be9c798abcde0f7dab6108d5443ff800db689576d4d51764e

    Download Submit