Overview

overview

10

Static

static

10

aac54c52de...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    153s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240523-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    19-08-2024 11:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    aac54c52defaa04afde37b2e07ef49b9_JaffaCakes118

  • Size

    1.2MB

  • MD5

    aac54c52defaa04afde37b2e07ef49b9

  • SHA1

    1b4993adf42c0b151c662e68043496854819f8d0

  • SHA256

    63309a3ece4c0c0568db02d3c3e562c75aff756bb9387f56fc86d7a89c59ee7f

  • SHA512

    e45474c00ea6e56659b3bcfbd42118c6705f85a0b877bd1d27ae7abe136365df33116d36b8ea06d47b24d872e59b5377ccc6f4b9c6b59eab0b39b216187fed53

  • SSDEEP

    24576:e845rGHu6gVJKG75oFpA0VWeX4N2y1q2rJp0:745vRVJKGtSA0VWeoEu9p0

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 43 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/aac54c52defaa04afde37b2e07ef49b9_JaffaCakes118
    /tmp/aac54c52defaa04afde37b2e07ef49b9_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2831

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/DbSecuritySpt
    Filesize

    64B

    MD5

    be0485c0f778b4b72c00e5696e707898

    SHA1

    eec11ecc5851a98d60a059dd673d74185284e309

    SHA256

    bfb9e26e75d204041a13a937c3b243954e06c7e481a5aa7340b9e9f8f9bc46ad

    SHA512

    9d72a6032325a020fcf7ff1ec64b94ad79551f3d762301203052763c51b4fb01534af84f256c734fd4cf17b3f78203c8e1891d5d708c4cee1a1949b21dccc3b6

    Download Submit

  • /tmp/conf.n
    Filesize

    73B

    MD5

    80a0a79398184386a34a86716ba7c7aa

    SHA1

    e2ab0df25e0e59d627e025e6f3e816b7fbd610eb

    SHA256

    612c5a2488ce1e9b9363330de451f3467dad606c623aadaa5960d22df5eb7c25

    SHA512

    8f05979c22f1717a3230357a907f31633a1826bb762560d9cc70e414ab9c6d60e2ad9ab1e4704078cb02ec45188f90dfe74f31856458f485b0c77261cd4f5da0

    Download Submit

  • /tmp/gates.lod
    Filesize

    4B

    MD5

    ade55409d1224074754035a5a937d2e0

    SHA1

    8aa80f7daf9fea98a5be5f6fe2e1c08a73e8474f

    SHA256

    99dbbc4aad5da980a3b5035ff28d2e9f828d973cf7be91cdf3b6886741879371

    SHA512

    f1aea3bb2e4d68dcb75ce4a4dc076076fc18d0cbb229fd9c0704e432ef18225ed671cba4562f96bcba7854cbdf234c591530b9fa3145ceda7fdc37fefc7bed61

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    1b81673ab8683afc379509692d972e5e

    SHA1

    01ce5fcc136ebd1ac446aa123917b3301123cac2

    SHA256

    d1271bed32750fe61ba71b7a93ec03c4654f93299ac5299e19af2e4fbd5906d9

    SHA512

    856b1d3ddacf88da9ae973e00375a6a152e3a22fe3959f25d758ab87dd0a14aa1e00f2587cbbd7351a0cf682c7597203af491b50fc3f914acf5dc387aba46c18

    Download Submit