Overview

overview

10

Static

static

10

9f5660ca5b...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    153s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240523-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    16-08-2024 17:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9f5660ca5b47fcd289f9264ee3ddb661_JaffaCakes118

  • Size

    1.2MB

  • MD5

    9f5660ca5b47fcd289f9264ee3ddb661

  • SHA1

    33cd43d73a3b1c265bb2ffc54435b5a4849d1cf0

  • SHA256

    d32e4ca05ed997a3be2cbddd40b4b61786725147e36103a4cb7cdb7d930c618e

  • SHA512

    07d43a5cb55e12b6c5197245fb1b15c4a30ec5c05c37663051eccd5867379efafb83bfa010446349a3b2befe333b97dc2b58e9fc18c3b29351dae2f62e5a2358

  • SSDEEP

    24576:e845rGHu6gVJKG75oFpA0VWIX4D2y1q2rJp0:745vRVJKGtSA0VWIoiu9p0

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 43 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/9f5660ca5b47fcd289f9264ee3ddb661_JaffaCakes118
    /tmp/9f5660ca5b47fcd289f9264ee3ddb661_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2821

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/DbSecuritySpt
    Filesize

    64B

    MD5

    6b4ff46f092866b300ad80457e0a9e81

    SHA1

    86f4876fb52703a6cedb6f1d53be8d69dd887d13

    SHA256

    fb4ea78ee8a8b44a30f0f125edf653d54c0e946291c06eefc1987499552f3cd5

    SHA512

    5c6367672bf4ef10eb3a69d444d89ba1751f21197296e7839a7c37c2141dc9928c4f2c95cf0352a5ce569a2fe934bca779f7b2b1f607266e6748ccbb6548e1ec

    Download Submit

  • /tmp/conf.n
    Filesize

    73B

    MD5

    a56ed232b9c8c6fb177ce6ddc296442d

    SHA1

    f897aa082afea034f39bec49514c85458a830317

    SHA256

    bfecefbf08b252d65387c94d9bc339d216eefe6b9b5bab2386e399e1c071cbc6

    SHA512

    e1fe4f968b8cc9d539b9c73903c1b0d5b79bc83bac6f000f1b3d1d89f7854296826c672ecc9bdff5612b17e80dbc6165efaa19d5c55adf015b3db0a997743b75

    Download Submit

  • /tmp/gates.lod
    Filesize

    4B

    MD5

    12311d05c9aa67765703984239511212

    SHA1

    8304c52b0c2b67372d5dcbe998ee4e04271275d6

    SHA256

    7d608decaea5ec08bd4141d4d81c51ee8703223bf27bb89239d7e6d9c92493ef

    SHA512

    b97308ebae7755f926509633909ae931a266f9fe4f77a7efe1339069ce7951f7f7feeaa055dd40e22c7922ec9e63fb99a988d29abfc7f4d735042fbea5b877c1

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    c7a6736a40fd78584bc04d5d8d7c9a28

    SHA1

    ba6e128e5cb5a0a57f5f59e387fcc06e927b3240

    SHA256

    e5bab85c150d0f203f381b9e8a0679eff58dc81deeddaa47b216f7042ef9eaf2

    SHA512

    cabfa4b450e542dc1d08958bf672f3740f0f7ad7e1e1c8226a8797cc250a5005f3273a003734f74f81793a26596417ef1d16250a685b4726b7e2f7a085d1dca0

    Download Submit