Overview

overview

10

Static

static

10

75b165bfa2...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    149s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240523-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    30-07-2024 14:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    75b165bfa21af85809fd8be5d7be6d41_JaffaCakes118

  • Size

    1.1MB

  • MD5

    75b165bfa21af85809fd8be5d7be6d41

  • SHA1

    e391e348f9585821c6cb5234d08a4046236b6bf6

  • SHA256

    0345388a2db7bf67259eaff14d7c505419ee3c675b4f1b59b5af2b261a9f87d9

  • SHA512

    2f13a8287a179145d32e1dce49c482623f5cd51d5654abc239095e4243a3cdea586bfc3032cf0de2b067de98c4e4ba795a5d3c081df207f05928539029d35bd7

  • SSDEEP

    24576:4vRE7caCfKGPqVEDNLFxKsfaTI+gIGYuuCol7r:4vREKfPqVE5jKsfaTRHGVo7r

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 37 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/75b165bfa21af85809fd8be5d7be6d41_JaffaCakes118
    /tmp/75b165bfa21af85809fd8be5d7be6d41_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2479

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/VsystemsshMdt
    Filesize

    64B

    MD5

    39dd3bb1fe59edeb441d151b20f76723

    SHA1

    56b2f4d50ebf02ebee7b809cd4004b586fa5a141

    SHA256

    e24b59a8847adaf0c6995c0e2a12153152a9a87fdc67fc5738a839f6036577d3

    SHA512

    16a94076363c386ecc7bc469578d8d13f533c50d45fb52c484c45e91fbd84a512ffeac0909588f5f4a8319289a5064cc8886d209cbb43f919f95acffab63f73f

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    66a8664da6bfe92fee7b4106aeb052c3

    SHA1

    68ecfefd10df36897a1ac6eeb3059bb5631eac8c

    SHA256

    26095f5c8d60406498e2c4816fccc75ce19ac292b963d23d5c4d43575bd961d3

    SHA512

    05d44a063e88f64e987e8c9ab828eda7a2cdcf7fad6bd234067ad564fe2a88445b392413175d13aa5092eda3dd4c99a7acddbf5e23d7a69839ac42023019e553

    Download Submit

  • /tmp/vga.conf
    Filesize

    4B

    MD5

    b06b5541a62ed438f956b662b4e1ec28

    SHA1

    6f751b16b8d2edbd6d389c5ba0ada75d78f184d6

    SHA256

    18167da210996cf3525e400870f7d4955d6b983a7b7d237586e242e59888ad86

    SHA512

    8925c60b4398efb55db246b74a2b7dfd83202b71597251efd62e5757f45d6d821959717f5a6b614589a5ff12c3a0b75db98ee04efb66bc93e31a6dff85206549

    Download Submit