Overview

overview

10

Static

static

10

3270f2db7e...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240729-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240729-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    29-07-2024 02:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3270f2db7ee82e4339dd6d8bf4ab4bb6_JaffaCakes118

  • Size

    1.2MB

  • MD5

    3270f2db7ee82e4339dd6d8bf4ab4bb6

  • SHA1

    c6b3c480e180530afbdd28df43c6c2a834ec8d15

  • SHA256

    7a9138408d453e5ac46d2ef6c02e2dc8b7eff1510462cff9be8608b85d5e2929

  • SHA512

    15230de760ae9a932a2b713a3ca9c96ee21ba550ecde8d239606adbe7df7e8d0e537531ef4182ff77fdcce4d7939a7079f46601aceafe83f65616c505af2131a

  • SSDEEP

    24576:e845rlHu6gVJKG75oFpA0VWIX4G2y1q2rJp0:745wRVJKGtSA0VWIoVu9p0

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 43 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/3270f2db7ee82e4339dd6d8bf4ab4bb6_JaffaCakes118
    /tmp/3270f2db7ee82e4339dd6d8bf4ab4bb6_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2457

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/DbSecuritySpt
    Filesize

    64B

    MD5

    0d7161cb12ccefe8a05e9b7d59b81192

    SHA1

    21ed33e7ec2e898398d07f3a0309a0eed089700c

    SHA256

    ab8e0e105ad9dbd876c717f29e48f8115b537551ef3fd9cb337adf3fbf8aa14c

    SHA512

    a992e6c3cb36d9cc5c62b3458df3acad1412a09072e9823ad03b22dce6179de73d533abd31e7236cf00bf66794ee5783b569fad3ff9ce27458b53bf008175695

    Download Submit

  • /tmp/conf.n
    Filesize

    73B

    MD5

    c58680b3e5c74f329fbaf4c4a404ffe6

    SHA1

    4e2bd9c60ad1cab61453a4cd566d3a5ca8d08561

    SHA256

    e8d8780f80f825f1c1889391e2f038b532cb039120caaa6a8e24f73c0ad5ade8

    SHA512

    a777b01570500415e3154a056b9b3f87d14f706c4af75556c9be86a6ef11983562e5fb8d150d25e50135f86d6b1f37af6d68db752caeab12d39e78881a048e52

    Download Submit

  • /tmp/gates.lod
    Filesize

    4B

    MD5

    8bdb5058376143fa358981954e7626b8

    SHA1

    cd308cb410a33752e1be3512f89ea240a9311cf8

    SHA256

    7f048c26d647f131dcfadc28d7c35f82f0881a5e087c7dc4ea0e6c762d3fdf9f

    SHA512

    89f960cf0428619c5a0ebf387c7ed6694001a750e13767e6eea3828943594e965db90b32763b8ab1dc16197dbd4ea1f8c91c13b6c001ba388dd40e65b7d42fc4

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    87d36a8ed375091f7d25ac44146e940b

    SHA1

    5ddb614f8802381a9d829e62c81d83bb112e97ed

    SHA256

    534ce9ff804e7ea05027552e725145ee2ee376a09c98af389bc9bc6bea95744d

    SHA512

    8fe8557cd7961581abb0b5af24d30eaa819097deff6bc0460796a449a5121c189d371bea28ab0da5c30215881239b15b535bb3b3ac30e1eae0779d0aea3fbaf0

    Download Submit