kaiten | 187a876ce298bd0e281a429cdc5e8516e8c3f0be2075cf37e8c5d7362be2a890 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

8ff936ede9...kes118

ubuntu-24.04-amd64

7

Sharing

General

Target

8ff936ede935ccdb4c65c0b35b2f1e4b_JaffaCakes118
Size

148KB
Sample

240812-x18l4awamn
MD5

8ff936ede935ccdb4c65c0b35b2f1e4b
SHA1

4265a278907585daaa3e2919e175558ccfbc5a9f
SHA256

187a876ce298bd0e281a429cdc5e8516e8c3f0be2075cf37e8c5d7362be2a890
SHA512

b889e7a323e6c903ab3c0e254aa30e577bdcff5c2b99e4cf1fdb1c4a7bd6171f5e05471234e7e258cbf9fb85851e322cc476a9c8b647f889b21ce8c1eef0c110
SSDEEP

3072:5VI07iNc14j128UALQE7BAIIkszQWtQL5RTAx5flANpTnO:53l8UA8ENtIklWtQL5RTAx5flANpTnO

Score

10^/10

kaiten linux rootkit

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

8ff936ede935ccdb4c65c0b35b2f1e4b_JaffaCakes118

Resource

ubuntu2404-amd64-20240729-en

ubuntu-24.04-amd64

1 signatures

150 seconds

Malware Config

Targets

- Target
  
  8ff936ede935ccdb4c65c0b35b2f1e4b_JaffaCakes118
- Size
  
  148KB
- MD5
  
  8ff936ede935ccdb4c65c0b35b2f1e4b
- SHA1
  
  4265a278907585daaa3e2919e175558ccfbc5a9f
- SHA256
  
  187a876ce298bd0e281a429cdc5e8516e8c3f0be2075cf37e8c5d7362be2a890
- SHA512
  
  b889e7a323e6c903ab3c0e254aa30e577bdcff5c2b99e4cf1fdb1c4a7bd6171f5e05471234e7e258cbf9fb85851e322cc476a9c8b647f889b21ce8c1eef0c110
- SSDEEP
  
  3072:5VI07iNc14j128UALQE7BAIIkszQWtQL5RTAx5flANpTnO:53l8UA8ENtIklWtQL5RTAx5flANpTnO
Score

7^/10

rootkit
- Loads a kernel module
  Loads a Linux kernel module, potentially to achieve persistence
  rootkit
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy