Overview

overview

10

Static

static

10

6a65e9327e...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    156s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240523-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    30-07-2024 00:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6a65e9327e7c893a50348c396032696f_JaffaCakes118

  • Size

    1.2MB

  • MD5

    6a65e9327e7c893a50348c396032696f

  • SHA1

    752284ca96950d96c1eeb991d6e5d411a9fac65b

  • SHA256

    f09de828728d005bf938cd0de9529edb677da888dcdec5f0fc3a2862553e5ebf

  • SHA512

    242a3100839b73a76a721744606292c74942035e94fdb35aca8f58993caf972d78e8c0195a139758f74c2f3c58b97e9b2ede41e93ce2c2aa52db008975cbc8e6

  • SSDEEP

    24576:e845rlHu6gVJKG75oFpA0VWOX4G2y1q2rJp0:745wRVJKGtSA0VWOoVu9p0

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 43 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/6a65e9327e7c893a50348c396032696f_JaffaCakes118
    /tmp/6a65e9327e7c893a50348c396032696f_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2465

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/DbSecuritySpt
    Filesize

    64B

    MD5

    f6670f6c68d16b6b3aae0edc5c8ec608

    SHA1

    150b0cd119a364b466a46fd191d29a962c5ad85d

    SHA256

    5bc2fafb4c0b75ac86df99ed9b37cbfcbae34e0b3cfe2aab6c0009d63b809d41

    SHA512

    7dcb3a4e1de26300250d486a0fe141e0856a2928d5b8cad4d37d6b79fcc663b25c42527b506b6fe41de0a41ebf953aa92a79036d5e469bc44760ecc75413d90b

    Download Submit

  • /tmp/conf.n
    Filesize

    73B

    MD5

    dde5482c080700a996d527a3f84a68cd

    SHA1

    7d0ebf5248cb7f1ebed8ead2c35ea0606c1e8f1f

    SHA256

    3043fd09c6238e34014c7fd85953865a402d9b0b4db6bcd759cc85ffb2b375fa

    SHA512

    b037ab4890f901e4e5f1941d5582d1cbe81e6a2af36faae0d768eaba49024124c0df890a4c67ae647c28c1e1d35ce3e0d52a83f294b3487035fc4f0c8423aa9b

    Download Submit

  • /tmp/gates.lod
    Filesize

    4B

    MD5

    250413d2982f1f83aa62a3a323cd2a87

    SHA1

    3c24f257fbe14b58141a0ab7dbd5484c1d561f2c

    SHA256

    54a462dce3c1abb2b43ba63a42bc391fa5561bfeafe737bd1f4845b902ffbfe3

    SHA512

    e62538b99ca820e4ef2c24da6dc2afbe963c6793f0f7a93dbc231bdf44b77baa288d4ed18e8b05a3e5446454029d127fa54ead1c5fd9d7ff91fa21006e12f699

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    c3e6e41fcac4601242ad9e9d45ed18fb

    SHA1

    4254324a2357fb4b03e6ab13cd428dd209a6ab00

    SHA256

    666ee49af402554dd8d353a91c0c86129592d17e40f2a45e0d23caddb225ccc1

    SHA512

    770e118ef2da3ea8b17dfd8569da2f21bb89f68739191818c56089e1cf23b1c3da22037d118f818cf654731e3005c6974b9b3d3a0ff45bebfa7cf33935005bb4

    Download Submit