Overview

overview

10

Static

static

10

5b88e0490d...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    148s
  • max time network
    152s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240523-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    29-07-2024 19:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5b88e0490dd764e66e13c8a543099c9d_JaffaCakes118

  • Size

    1.2MB

  • MD5

    5b88e0490dd764e66e13c8a543099c9d

  • SHA1

    293f2806139a039e6b019ee94bd5bf345ad0b4b3

  • SHA256

    f0eed9bcf46258ef52981ecd76d18e18d5f25390452182e8561ee535011deba9

  • SHA512

    a1071b9fcf98b551335510e65b16c83616a43f89bc78a31d0bf7950a658557c7921b9bfff5f65c1062f6b961f1ed2af0f644b658cb3033b981fc8face7c1b16a

  • SSDEEP

    24576:e845rGHu6gVJKG75oFpA0VWeX4k2y1q2rJp0:745vRVJKGtSA0VWeoru9p0

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 43 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/5b88e0490dd764e66e13c8a543099c9d_JaffaCakes118
    /tmp/5b88e0490dd764e66e13c8a543099c9d_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2448

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/DbSecuritySpt
    Filesize

    64B

    MD5

    a262e6c1f41cd57691ea9d1c7d755ce6

    SHA1

    899d22a797393ba75991e8d42de264325b036e47

    SHA256

    feba05c82d07df12939c512deb645631ef0a70abec96d4850e30134722b5894c

    SHA512

    0360c26cc6e3b5cba5d0a0836773253b852e3628cadef73e5dbc6934d7649f9bdeacfefa44d8927095f602077b3cf2dc36d931f9e099e11389d4df2ce6baab01

    Download Submit

  • /tmp/conf.n
    Filesize

    73B

    MD5

    6cd455165a6413ec7cf19488ca44838a

    SHA1

    d5810f05839689c2e35fbf16dc6a3030c9ac4a2e

    SHA256

    8daee42374a208a89fbb370e08b46a2f85d67e07c01d1e5dac6f22deaaf29bcf

    SHA512

    a9f83b845a15cbd5078555e07943b56bcd7e66dcb78d95b952b82b7fcefbbef036359dfc90d88e61e64308937ca5d747ac31b5fb8f3bd5904444ae2f4868003a

    Download Submit

  • /tmp/gates.lod
    Filesize

    4B

    MD5

    49d4b2faeb4b7b9e745775793141e2b2

    SHA1

    3dae524e50058ba5db59f21a1e88a4afb176c122

    SHA256

    b0b03d744a85f4459c71437fe196dd925a299a06ae7a425615c903c97c36b8fb

    SHA512

    55d648b97149a610c92bd881b5f99e0dcb6fa5bab48de9184dbda98cab5a8d33c4e5c91b2fffbe5da8f404db0d65b840a868d63a8403a584a5b721086b52f821

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    1e4857b5589be338ce9976fb1e0ef513

    SHA1

    7cf43cde90473dc3f6422706f5ed66dcf8293dd6

    SHA256

    a6683e3af61566399c623770b71d34739df601b5bff5aad1e128cd0374ac3d11

    SHA512

    211203f23ac7e38e4582e38f6415b6ce29d0d6875011d6449a42b1717e435290c9e35ac0e4adb1b89820575642788606c0d3f538b7c54243b1ddca06be821dda

    Download Submit