Overview

overview

10

Static

static

10

368c8cbc67...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    148s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240729-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240729-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    29-07-2024 03:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    368c8cbc67d3ce1ff7d2735cfe84f670_JaffaCakes118

  • Size

    1.1MB

  • MD5

    368c8cbc67d3ce1ff7d2735cfe84f670

  • SHA1

    f66ab3403c34e4c5d4202b9f93098e77e30df653

  • SHA256

    0d84c93d895c48a00aacf0dbc0565ebde3ab720badf5eff0d85c43aa29027835

  • SHA512

    450dbab685b5a274224db793e8b2587c5468a77f464badea4b5dc12548eda8af88a333e08bfa65bcec77d6fe106b86675b0400f8bcadcc6df02638db9025598d

  • SSDEEP

    24576:4vRE7caCfKGPqVEDNLFxKsfaqI+gIGYuuCol7r:4vREKfPqVE5jKsfaqRHGVo7r

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 37 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/368c8cbc67d3ce1ff7d2735cfe84f670_JaffaCakes118
    /tmp/368c8cbc67d3ce1ff7d2735cfe84f670_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2426

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/DbSecurityMdt
    Filesize

    64B

    MD5

    b1c21904217d1ca855b0db774bf30d99

    SHA1

    8665b47bc640e38ecabf2d9b6fa5a55c26083a01

    SHA256

    68a66fa557afaf7ccdfaade461ec3c6ea4b8ee2ac9230c0add5565921aacf700

    SHA512

    1837ae3de1511b51b341d384b3947f15328ef502f1840edda63520eec4395f953c32471306363a62493fd985d34b6061a33b202482f2d7b8102d0a1ae251cab1

    Download Submit

  • /tmp/conf.n
    Filesize

    69B

    MD5

    126b65d9ece175ba56b469f89ce74aa8

    SHA1

    47e8d957c6f8b7a46c0fc214dd767ad08440d05b

    SHA256

    cb0729b25b6483201995069170795420cc61e2a7c3712edd9f1f46317785ce76

    SHA512

    39a3a9bc762cd653b252b70a03cfc43868d5a06547091ab3f5cc31b9b25444412b84ec2ff268f9e074763a0131679707034410e1b0a285f6953bb83e331d08a6

    Download Submit

  • /tmp/gates.note
    Filesize

    4B

    MD5

    2aaaddf27344ee54058548dc081c6541

    SHA1

    efd4b75aca1ede0c5aac02465552865354bcae24

    SHA256

    c24703aeed68217acf9520dddea6b3673e11e493dde7d6944bcaac0bd3a14448

    SHA512

    0b10971929e5eb4597de083a694f675f87b7b5b113918fa139cc83eb3e3bc322d6a1296b9dddf38217e338713318f542bc776e1b284ce36304bb5df2a12f1161

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    ca9ceacdbd17fb3f2650c8a6adae9bd3

    SHA1

    e478f681af967b3962705be5255131c6e6f8bfe5

    SHA256

    9ea83f07b5e6e545e9daa39c3d33b53f5d232a26f6bb21535c7ecfcb378dcdb9

    SHA512

    cc5443aecddad872182478bcdf31f1a47a8d9a60ff126604f9deaa755f0964aa12118d35bdb52ef4f2fe008811cff24ab67b987ca3ab17997f4ba7cf31d97a3e

    Download Submit