Overview

overview

10

Static

static

10

78e84ad5df...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240523-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    30-07-2024 15:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    78e84ad5df0ed13aab0b893abed7ca5b_JaffaCakes118

  • Size

    1.2MB

  • MD5

    78e84ad5df0ed13aab0b893abed7ca5b

  • SHA1

    88f40e01a0391d8a7ca87935ce9712a5a2ab722b

  • SHA256

    52dc1ac19515b4cbc9b65dfca6914ae668e9bd03f8d9312d22506bd767087b37

  • SHA512

    ec2e2b7484008989141d87259fe5c265c74cd2e5f8d51172dd6905b8355ee74f57ea4af010ead5e113a0ac72325466311cf9028985f9653b6344a51c168e0919

  • SSDEEP

    24576:e845rGHu6gVJKG75oFpA0VWIX4u2y1q2rJp0:745vRVJKGtSA0VWIoNu9p0

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 43 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/78e84ad5df0ed13aab0b893abed7ca5b_JaffaCakes118
    /tmp/78e84ad5df0ed13aab0b893abed7ca5b_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2500

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/DbSecuritySpt
    Filesize

    64B

    MD5

    45441947fbd0cad2cd4cf2e8338a0e24

    SHA1

    83a63dc1c4e9b9527542996d1f8349823ac26476

    SHA256

    f2300b7ef906a7ce183d564652a82b4e33a1bf9b018762ca9cf54e70e0bbcb92

    SHA512

    03fe2cd55d484169e00457904b791cd487fecbfadc8a8135c18390e79b2290f84ffdfbe649ef7da720b15393df024404a210136f51e98342115580909c8d39ad

    Download Submit

  • /tmp/conf.n
    Filesize

    73B

    MD5

    3631fffe4d0a7428d3f74136d88ca1c6

    SHA1

    590d1934116e26a42612b4a928c788268c400977

    SHA256

    6329988783c49da4a5658546134b9ff507992790b990711a1e05e19528502b08

    SHA512

    1ca436d881d7db4b559693bae5ade12ebf76d265b1d26f56517ac71e8c79ee75c14c375cdae57b74dae830fe46af42a7d64d8ce4f6efbfaa7f6c60f55aab07d2

    Download Submit

  • /tmp/gates.lod
    Filesize

    4B

    MD5

    696b35cc35e710279b9c2dedc08e22d7

    SHA1

    2491991e0c2b3ea58ff0f92851ec4af9133a2ca1

    SHA256

    447512622f9767785e7dac3176232565e58fbf84ec87f783607cfbb95d82375b

    SHA512

    d5ad66d53770f59603ba3fe87a6e651f3dbc49b0097a04ac0dd6c858d222b321337e90f67aeb7d77c5c4f0dc4100fd5f09bd7555c59321752a8ba2c8dd829c38

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    d2ebd41cc42c5ebeab153c4c95a353f3

    SHA1

    3db1bc281a5ad22251e266303745496a18fbc433

    SHA256

    8bbf4a7b6e91ec1722a724f96bb9deeb0aa7d48700b1c6c157c5248b5584399c

    SHA512

    8fa2e0502bfe4a862080b2561d21ea147db6f1ac40095beff755e75adb8481b9fa40ebf0c6cebb52ff631fec530d3f131bbca10e7ac0ab8dd4f04526f5d1a659

    Download Submit