Overview

overview

10

Static

static

10

a1da9b563d...kes118

ubuntu-24.04-amd64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a1da9b563db9056c96523a8727a279e3_JaffaCakes118

  • Size

    603KB

  • Sample

    240817-kfjq1szbpm

  • MD5

    a1da9b563db9056c96523a8727a279e3

  • SHA1

    264124d50c9c25cea15459acb662b750bd7987c5

  • SHA256

    f5b098419bdcd2aee198c074b895e113fb7cac9132ad1b592005d31f1394ad3f

  • SHA512

    1418a5fc3fd23a0b10533a60ab76cfd71cd0894c0bf8fdc859fdc27a3673a4f5fc63320ab4e0aab81eefeaba933266933a74e60021a3985bb5dbe8ca90a93aaf

  • SSDEEP

    12288:R40XBrnlTCbI5ZBP5IePtqLn4yFeC+oT6ygF9b4elMuThmVF:e01tCbqNNPtqLn4yFmoEbdlH9mn

Score
10/10
xorddosbotnetdownloaderlinuxrootkit

Malware Config

Extracted

Family

xorddos

C2

http://info1.3000uc.com/b/u.php

gh.dsaj2a1.org:2857

navert0p.com:2857

wangzongfacai.com:2857
Attributes
  • crc_polynomial

    EDB88320

xor.plain

Targets

    • Target

      a1da9b563db9056c96523a8727a279e3_JaffaCakes118

    • Size

      603KB

    • MD5

      a1da9b563db9056c96523a8727a279e3

    • SHA1

      264124d50c9c25cea15459acb662b750bd7987c5

    • SHA256

      f5b098419bdcd2aee198c074b895e113fb7cac9132ad1b592005d31f1394ad3f

    • SHA512

      1418a5fc3fd23a0b10533a60ab76cfd71cd0894c0bf8fdc859fdc27a3673a4f5fc63320ab4e0aab81eefeaba933266933a74e60021a3985bb5dbe8ca90a93aaf

    • SSDEEP

      12288:R40XBrnlTCbI5ZBP5IePtqLn4yFeC+oT6ygF9b4elMuThmVF:e01tCbqNNPtqLn4yFmoEbdlH9mn

    Score
    10/10
    xorddosbotnetdownloaderrootkit

    • XorDDoS

      Botnet and downloader malware targeting Linux-based operating systems and IoT devices.

      botnetdownloaderxorddos

    • XorDDoS payload

    • Writes memory of remote process

    • Loads a kernel module

      Loads a Linux kernel module, potentially to achieve persistence

      rootkit

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    behavioral1

MITRE ATT&CK Matrix

Tasks