Overview

overview

10

Static

static

10

a2105c014f...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    149s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240729-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240729-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    17-08-2024 09:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a2105c014f86694e960aaedf4bbf1099_JaffaCakes118

  • Size

    1.2MB

  • MD5

    a2105c014f86694e960aaedf4bbf1099

  • SHA1

    9b849dfe7c49eb874e0c4e76f22fc4e1c75fbb57

  • SHA256

    4787faba7acba522e95fdb65a1312b98a1f167141fa9668e180886c30cb27f54

  • SHA512

    d52474dcdf0e187668b84d60d8cf80471fe56ce624d266f4f436274be9eca4c7b5107b798827bf7e3b82d48a579c0cb49731864237131af3f84ba6cf0baebeb8

  • SSDEEP

    24576:e845rGHu6gVJKG75oFpA0VWeX402y1q2rJp0:745vRVJKGtSA0VWeobu9p0

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 43 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/a2105c014f86694e960aaedf4bbf1099_JaffaCakes118
    /tmp/a2105c014f86694e960aaedf4bbf1099_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2513

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/DbSecuritySpt
    Filesize

    64B

    MD5

    6d46a5e72734bb02a3cd006aa48aa351

    SHA1

    e330bcea0bc422712dd680f3d9bafec3079ec58d

    SHA256

    3d3eea50a3e07ef67cb51250aa8bdf1a6c50ca9374b349735bcba0dd018f0b1c

    SHA512

    3150b5db12de49c1712ad0167f7399ceef202ef095d6c2bfaf5551da83e96ed0646beecf97adfb354a39cd04f9e620a7bd8a3972b1bd228f89690c4c5e7a7b28

    Download Submit

  • /tmp/conf.n
    Filesize

    73B

    MD5

    c58680b3e5c74f329fbaf4c4a404ffe6

    SHA1

    4e2bd9c60ad1cab61453a4cd566d3a5ca8d08561

    SHA256

    e8d8780f80f825f1c1889391e2f038b532cb039120caaa6a8e24f73c0ad5ade8

    SHA512

    a777b01570500415e3154a056b9b3f87d14f706c4af75556c9be86a6ef11983562e5fb8d150d25e50135f86d6b1f37af6d68db752caeab12d39e78881a048e52

    Download Submit

  • /tmp/gates.lod
    Filesize

    4B

    MD5

    415e1af7ea95f89f4e375162b21ae38c

    SHA1

    e73aec43aad5e460523701e4419ec45d05360501

    SHA256

    81e3115919b4a97b3a2d74945e11f722782beabd40af734e2a2e8266fb2c9542

    SHA512

    eff8d1b0596f67571275f1e43453836150d237220118d93085fa036848137bd022121acaacf59acb473fbcb6c98f2051a74c2b3a39e8fe80b17d1e26eece5cb0

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    e420e6a64992f583a31001b1afc6fc23

    SHA1

    86a90d4430a004e1d3b07f26d55f5c5213c42271

    SHA256

    c5ab1b1a95ddcc6494487787c7f8496b412d0840ae548bcd01600331118f6437

    SHA512

    1f925a158a5fdd0de8c0b69f87fd87e3564b44763b2dcd6e15e58bf0443cc0feea54c15d2c9ba17feb2c73fcc8c7ccc1542a36173c2c85bbb401001230e0c4ac

    Download Submit