Overview

overview

10

Static

static

10

3e3de0a172...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    145s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240729-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240729-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    29-07-2024 09:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3e3de0a1728afa7bedb524dea8e178ef_JaffaCakes118

  • Size

    1.2MB

  • MD5

    3e3de0a1728afa7bedb524dea8e178ef

  • SHA1

    7562774673d012ca274a3ee52e7084585adda1ed

  • SHA256

    48ed966c0b42273d69a9a9279e2a8968b437e6b38a4a27f48bbe74d2c871026d

  • SHA512

    a2232cdcef815461ed00a9b2066a928774fcbe19f78bd97c28ebf5c373d22f91dbc74cae5a215c545f504641d766062a1b28e49872cfe4f88c94178a542f99be

  • SSDEEP

    24576:e845rGHu6gVJKG75oFpA0VWeX462y1q2rJp0:745vRVJKGtSA0VWeo5u9p0

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 43 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/3e3de0a1728afa7bedb524dea8e178ef_JaffaCakes118
    /tmp/3e3de0a1728afa7bedb524dea8e178ef_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2426

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/DbSecuritySpt
    Filesize

    64B

    MD5

    e722262234818d3744975aa54e1f361f

    SHA1

    76de705e6d18242f298c0119bc03b9bd22df40ff

    SHA256

    636e3c8a46dd3ab0f6f5300a40ad1663c1f5f05ba98991bc53c96ccd270d31cc

    SHA512

    9e723d10008b2b7a7ae205602bf2bf072864fd014c2acb59325cb6fb35e5a3cf1eb3b968df8200f8f1d60bb9d079c7613f28f5d18a5492f71f50f4f20a0bf912

    Download Submit

  • /tmp/gates.lod
    Filesize

    4B

    MD5

    cc0991344c3d760ae42259064406bae1

    SHA1

    de35063a36ff0e4fbdb75c337589668ad4de8374

    SHA256

    3d93ec274ab8ebaa470a8294089ff8a2936ce457c7e0f8465a74d7dffa3df320

    SHA512

    e9fb21e9b7cf6615a9dfd514ed16fa1d9b7c95202f4cbc57c272d09b8c52fad3a79c0dca16f7597d0a77bff99313e41b579c6e239f157e212c16005d902846b7

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    ded0c9403802f9b50e7d0e746b3470b8

    SHA1

    278e2ed94cca8bfb21422775824f1a6471cae527

    SHA256

    555913ba42c52017705f637da91e972126c56a77959f94ff7bb9d18e47f310c6

    SHA512

    8dab5b2eccd7e0a3e526234b6c88fa71e18b864e7306fbaa9710a3cb7793b7c59d52ac622a153bd32e998140fb2ff8d29cd091bff027161184937db36171673e

    Download Submit