Overview

overview

10

Static

static

10

793f9870ea...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    154s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240523-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    30-07-2024 16:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    793f9870ea7e0ced29e8d689c458627e_JaffaCakes118

  • Size

    1.1MB

  • MD5

    793f9870ea7e0ced29e8d689c458627e

  • SHA1

    4d39bceb68e34b67c7d4d85023167fcd88310d26

  • SHA256

    7fd3bfe5b39e5da9da57a3638dabb258fe9fcc0b288eaf7726de4b5f8e443039

  • SHA512

    e4879702cf25201ed537a554d510b38e3ee0d0f677158bc65c287097f61e0d7b788bb853cd0088e453911e4ee5c01fd6d2f7a388d2bad56ea729f5ede0aad9dd

  • SSDEEP

    24576:4vRE7caCfKGPqVEDNLFxKsfaGI+gIGYuuCol7r:4vREKfPqVE5jKsfaGRHGVo7r

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 37 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/793f9870ea7e0ced29e8d689c458627e_JaffaCakes118
    /tmp/793f9870ea7e0ced29e8d689c458627e_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2819

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/VsystemsshMmt
    Filesize

    64B

    MD5

    fce2952cf9299c67bfd907d3dbd4fc5a

    SHA1

    61b78d67e3ecfa583535e8fd6b14846079a641b3

    SHA256

    1688f9df271f7649c83518cb6df5561188f6dea43d2193b4dbb205c73bc31ede

    SHA512

    0631d53e83f038a5b221ad214e7aaa7e12cbc99b96cd4a17b0a79e5c56d2425c1d8c2fc1b81acbd927cffa36f60b1aed495d385e0cd669311527281b58d436ab

    Download Submit

  • /tmp/Dest.cfg
    Filesize

    4B

    MD5

    aee92f16efd522b9326c25cc3237ac15

    SHA1

    c7b3f6f6411d271ebab2b3b0e90d317acc95d9a8

    SHA256

    47c04d7995ba767c5024eee3ade65a7aab34ac951c17a3e4265a4a5602e18592

    SHA512

    ac6f1866184e781cc1ce833652b73c5ddc0f884641aef1cd67cd1ac9867bd7409db90f1a26c5a6ac517abc289d9bff98c5ad50bf5022fb3547c17714082962c3

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    7de7d65a7a0a312f977d34107ce376be

    SHA1

    4bf5a1fd6ca57412d3ad86e46bef6a2faef98c65

    SHA256

    c64809863123535926e971ed64f68556b5f6eef96a6171fc91f620702d28c643

    SHA512

    a7ad5537c2f8a5cee2941aea463d6364a54d8cffa974abb33f68b3aacea59106d2b947f62f4a00733fb3ab9b0ee9fa5a29189a954b3c75085caa3142ea68fbbb

    Download Submit