Overview

overview

10

Static

static

10

75fead0b58...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    146s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240523-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    30-07-2024 15:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    75fead0b58b7bd86713bfb97a97286c1_JaffaCakes118

  • Size

    1.2MB

  • MD5

    75fead0b58b7bd86713bfb97a97286c1

  • SHA1

    6be1a5225beff3823afb78e23a64258761dac77f

  • SHA256

    e8c1948fd7771add2392cb77713e40d6a71b9c439d2b41f627f0608ed9e99cc4

  • SHA512

    07f80b652da80799c6e7b318d50ee2ef551b201167bba6ba287663b25edfce314bcc1a680f90449b0713cd093a0e266660b4c0f8366e84bf6f09456dbece9388

  • SSDEEP

    24576:e845rGHu6gVJKG75oFpA0VWeX4I2y1q2rJp0:745vRVJKGtSA0VWeoPu9p0

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 43 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/75fead0b58b7bd86713bfb97a97286c1_JaffaCakes118
    /tmp/75fead0b58b7bd86713bfb97a97286c1_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2481

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/DbSecuritySpt
    Filesize

    64B

    MD5

    402c1db8a2d26a7ebd37022b2a185f00

    SHA1

    12a280b58cc98d099445059471ff22328d5971a8

    SHA256

    635e7f0e8d3153d2ef22a191a4e38b0768c85cf44d555bd2d41c5d7b853cfdee

    SHA512

    7df9b984bfa4539829dd5094bfe3ca0fa8dcd40c4830cc461b3ffa41fcfb5caf079c1832f240e8fc833ec7176142e753d5d8d796af4e75637bce98e5fdef7a41

    Download Submit

  • /tmp/gates.lod
    Filesize

    4B

    MD5

    2c6ae45a3e88aee548c0714fad7f8269

    SHA1

    5f7eed61eead7e020601a2a9b552b56f7a6cd297

    SHA256

    530f967e2a24e5ab06997a5a77c10bf291cbb38a1d9628dd8ea4a6534a859b55

    SHA512

    bce206628767b918089c7beac5b2d0bd1768966be465bebfffe11882e788238e781f49986246bed6d998d51fbce0d37531828c2cdfc93ac6c3afcdd81a7ae98b

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    5bff52d2ecdf6a14ec41d44c32d90952

    SHA1

    4ef30330312c2f1f63af33a09a14766273ac1740

    SHA256

    7c4d3bfe6eedcc3ac20359a1d25ddd248349745d2e41282589bf0d82e6d14b21

    SHA512

    3cd5ebd22e79de3dfbd0f7a9600b626ca8e46d5c3dde31181c00ee96b546c59c835cf0315ef300747e814d8c07a44943a31f4a43a929ec817558bd36588ed16f

    Download Submit