Overview

overview

10

Static

static

10

94869343bb...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    148s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240523-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    13-08-2024 19:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    94869343bbe5b997c698d835e54de024_JaffaCakes118

  • Size

    1.1MB

  • MD5

    94869343bbe5b997c698d835e54de024

  • SHA1

    b831422746b00adb1e798685dfc19f8f2d7454e0

  • SHA256

    debecebc90c35ea59d191447fc99c3a997e27708d084772f232de2dd813aee8b

  • SHA512

    cc4bbef6fe355e8fbf263bbf9721ca4275252f8c793fa965c3b4e0bf8181739eb3451da0ad0997c9d624458ff01b357d45eb9301e9c3673ae2553a74fd98fb3e

  • SSDEEP

    24576:4vRE7caCfKGPqVEDNLFxKsfa5I+gIGYuuCol7r:4vREKfPqVE5jKsfa5RHGVo7r

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 37 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/94869343bbe5b997c698d835e54de024_JaffaCakes118
    /tmp/94869343bbe5b997c698d835e54de024_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2479

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/csuecuritycsu
    Filesize

    64B

    MD5

    737ea495bb01ba668e0b1fa6ca5cc3de

    SHA1

    2ff05a145978369f540260330da5a615bdd9d696

    SHA256

    26ba9a0e315288fb5c3f81c0f34e84e61aca02df1cb575c983987096c82b8df4

    SHA512

    5b468b4da879c287f6a5eaf9e535b46aea90c42b11641d302a0e5596cddb9ed0df9358488c03bd6057eb6aaa7f4d1962b7c675753b9b42bf02f36dd90f065d00

    Download Submit

  • /tmp/csuu.n
    Filesize

    69B

    MD5

    7e9a6c1d122046ccaafecaadd89e1583

    SHA1

    00e8535645536115737e4be8e1af173a96af2673

    SHA256

    7597bd09abdaaf8efcd9651ecb787a9b84a9a8fd09b612867bbf990d934d63a5

    SHA512

    96d94b257e494e1162010e80088ec5339f5aaf1690a74aaf960d9adbf46d2eacd979722beb59123620e2c3771921326f81d3ae742aab52307b41d72afd7a7acd

    Download Submit

  • /tmp/gacsu.note
    Filesize

    4B

    MD5

    b06b5541a62ed438f956b662b4e1ec28

    SHA1

    6f751b16b8d2edbd6d389c5ba0ada75d78f184d6

    SHA256

    18167da210996cf3525e400870f7d4955d6b983a7b7d237586e242e59888ad86

    SHA512

    8925c60b4398efb55db246b74a2b7dfd83202b71597251efd62e5757f45d6d821959717f5a6b614589a5ff12c3a0b75db98ee04efb66bc93e31a6dff85206549

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    421bae427e3c39403b0e2d7e5e7cd527

    SHA1

    0b177ccbdbd9223d2d8731c221c15a1b521a084c

    SHA256

    fa952f1b6dd8c49f6a6e81ffc5ecf22ee66e5dc4620205366ad95687f6d21bb3

    SHA512

    9ea1826070177e504440ee6006040310f7e9b6b7968a1a08a7377fadb47e89b59dd86397145b4855586fea279090ad986569250a9009ddcfbe141ca8ce3fc9e6

    Download Submit