Overview

overview

10

Static

static

10

9250528ff0...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    149s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240729-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240729-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    13-08-2024 08:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9250528ff0922ab01ce6a925f6e71b4f_JaffaCakes118

  • Size

    1.2MB

  • MD5

    9250528ff0922ab01ce6a925f6e71b4f

  • SHA1

    e87e994036ed1119dd02b1e09fd2d85772c20c94

  • SHA256

    806d6f9e316ba869db0289739882edbb2c8d9d54c1bb1d6aa0fe2cd897f358bc

  • SHA512

    9bf371160570536298bdbb3552ed0a531bac198d151856ae4814bad0c3cdac8ecb07dd2bb45fbf3ec4dd171c12a08a2aac6563f1b2503a32905aa65bdc094539

  • SSDEEP

    24576:e845rUHu6gVJKG75oFpA0VWLX4G2y1q2rJp0:7451RVJKGtSA0VWLoVu9p0

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 43 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/9250528ff0922ab01ce6a925f6e71b4f_JaffaCakes118
    /tmp/9250528ff0922ab01ce6a925f6e71b4f_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2497

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/DbSecuritySpt
    Filesize

    64B

    MD5

    a1e4142eaf8752dee5a31656a44fe271

    SHA1

    9d34d908857674b72562234967e2a5331a2488f9

    SHA256

    90fa46f47656447ab4d13e797fdeab877c7b4149cd42a0f7dd8c7d8ff5579f5a

    SHA512

    2f00f7d3d92e9e628e1f3708a651da461abe2a7431cdd818845e17dc0cca45b2ce835dbe9181338d3f1dd612cc1b73fcddfae73e49b7faf89805994d99726d84

    Download Submit

  • /tmp/conf.n
    Filesize

    73B

    MD5

    90099ceb9953b8c64095611e90c06d04

    SHA1

    fd8ab91f798dde6d5af31f12eec3f42c87878cde

    SHA256

    69f0e6b7bb61b319b4d5ff2dd16b567af1537a35500a92c3a86d33c377f17a66

    SHA512

    19cf75ad1c9bd8abd80a2f971675285c69277c6ac50a25202f9498211c91e2378b9f5083a1eecf35e00d13ea9b0c0180d20e38cdcdcb5cdb84077f7e8589ceeb

    Download Submit

  • /tmp/gates.lod
    Filesize

    4B

    MD5

    f7696a9b362ac5a51c3dc8f098b73923

    SHA1

    a6a0845258a40575703021e5244ff9c70838a23b

    SHA256

    5a0b83e19c5750eed6d8d46cb858d15c956a657093c08afa53133c0fbe5f04fb

    SHA512

    3ae0f24c4f1fe6593f20f92f251c54c1d10e6f576340c9ae31a46d50cf3b49c364d1a0ab6b9d5702cb057077db52a48f192b491f142315311629b9ad7cc11fdb

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    fd4db4f962e8fda595a44f50efeb4fb5

    SHA1

    d3a4b63d18b70bcfa2ed31c6b1785140550954f9

    SHA256

    8e302219510ffcc8575f75427d5554602ee978fb7561f9880284aca7f5e1b65c

    SHA512

    daa693441e40267eba10a01a779ebf3f9a7e1942680ca829e11c6afa20ad0f5b07d44e1247aba669f191d5d6cddbac8358bed0eb8ba226abc1d179f48d6eb29e

    Download Submit