Overview

overview

10

Static

static

10

78ae520f8f...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    155s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240523-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    30-07-2024 15:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    78ae520f8f12a1317b243c2901f4280e_JaffaCakes118

  • Size

    1.2MB

  • MD5

    78ae520f8f12a1317b243c2901f4280e

  • SHA1

    34b68000080df2802a8aaecdc9d7305ce8356381

  • SHA256

    b35b9f9c8cdbee38bf5ffe66f33a07bcf518049ae719d2f5211c5a5a781fc7c2

  • SHA512

    cacf7725f4749503177be966b8882ff1ff80005aef42fe02b04489b0ff624ced7d4f2ca8e9f3edf9bc490027fe9f5092aa9a7a40bf920fb05249647037175894

  • SSDEEP

    24576:e845rGHu6gVJKG75oFpA0VWeX4X2y1q2rJp0:745vRVJKGtSA0VWeoGu9p0

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 43 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/78ae520f8f12a1317b243c2901f4280e_JaffaCakes118
    /tmp/78ae520f8f12a1317b243c2901f4280e_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:4056

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/DbSecuritySpt
    Filesize

    64B

    MD5

    d454079cde0825903f150e4b6a62435a

    SHA1

    886d435e981234dc09d421fe0e4305d03af896c7

    SHA256

    3cba77efae715f591546416f46e01c892e79f6d1e9eb15babcb55beb7ede2c0c

    SHA512

    10752afe31f8dc1c1c3f5ec7d6f0b1c17f19bdac600c2fed0fb23317c9183b3ca8ce2999eb446d299cd46942539919468df24edb94d121fce859bcec291e9807

    Download Submit

  • /tmp/conf.n
    Filesize

    73B

    MD5

    65201466b4040c1e2df1008ee91229a3

    SHA1

    9a484f7abd4539f24cfac1f84ecfe9a8dceaf6b5

    SHA256

    603597f717b08122e7c18e1b2fcba6ab824eec5ab6110cc72544cde516d364e3

    SHA512

    f24a6300f17443f9aa7221dfbdfbc68d9088080b95fb9826822e99256a7c8b66489771f8891935e03462439add560be29f807c796eee56fd9bf24c1b5a8268ff

    Download Submit

  • /tmp/gates.lod
    Filesize

    4B

    MD5

    fa8dbbcb682699544e4e8f2212115f73

    SHA1

    2f5c5528c998eb5073a28d61fea9d36ab2323040

    SHA256

    b55184dec351ac66077c7a41b0bab64e34b7619517ab46b3d93b6f4a9c981888

    SHA512

    6d7b75a2561d4065836d9159b714c6d7c6a29adf404d5f0a44bf442f6ee80be74f37d9ca3120ca2b81334f39cc14baa1c4e3de3f5923107c37332e53abdc7d9a

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    9fcec4b94e94362c80014864da310bea

    SHA1

    0a451baa99c24e757ca1a99eea640532f0b63bc4

    SHA256

    94c56ee37bad6c2d06abf27af98acc8a540bdb20797654408f646cdf1c601b51

    SHA512

    5d4de48c1577627a5b9f23d3b622482d6976cc524caced1e32501a6ae3ceb850ef25a6d3a272f11a42bdca7292fe5ef90428a89bda85f3e552e91a4cb2505ba2

    Download Submit