mrblack | b5ff803aa6d6ee1ae3c0ba1e635ad6961a3d420f05d52575df8f9e5a0a972a31 | Triage

Submit
Reports

Overview

overview

Static

static

b23d3b6b4a...kes118

ubuntu-24.04-amd64

7

Sharing

General

Target

b23d3b6b4a158552fea2cf3fa44fc964_JaffaCakes118
Size

1.2MB
Sample

240821-f2hzds1hlb
MD5

b23d3b6b4a158552fea2cf3fa44fc964
SHA1

0e5319e8eb7eac61727e9e9f264882794fe3d926
SHA256

b5ff803aa6d6ee1ae3c0ba1e635ad6961a3d420f05d52575df8f9e5a0a972a31
SHA512

d7a1d48e1800afedee2bc4762c4201cc9382397feef89be03bfd4115bf1b3c3b0c252de952671b469b759ce18f08c73fc10d761a89fda6f9e3a99cb50306c03f
SSDEEP

24576:e845rGHu6gVJKG75oFpA0VWIX4R2y1q2rJp0:745vRVJKGtSA0VWIoIu9p0

Score

10^/10

mrblack linux rootkit

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

b23d3b6b4a158552fea2cf3fa44fc964_JaffaCakes118

Resource

ubuntu2404-amd64-20240523-en

ubuntu-24.04-amd64

1 signatures

150 seconds

Malware Config

Targets

- Target
  
  b23d3b6b4a158552fea2cf3fa44fc964_JaffaCakes118
- Size
  
  1.2MB
- MD5
  
  b23d3b6b4a158552fea2cf3fa44fc964
- SHA1
  
  0e5319e8eb7eac61727e9e9f264882794fe3d926
- SHA256
  
  b5ff803aa6d6ee1ae3c0ba1e635ad6961a3d420f05d52575df8f9e5a0a972a31
- SHA512
  
  d7a1d48e1800afedee2bc4762c4201cc9382397feef89be03bfd4115bf1b3c3b0c252de952671b469b759ce18f08c73fc10d761a89fda6f9e3a99cb50306c03f
- SSDEEP
  
  24576:e845rGHu6gVJKG75oFpA0VWIX4R2y1q2rJp0:745vRVJKGtSA0VWIoIu9p0
Score

7^/10

rootkit
- Loads a kernel module
  Loads a Linux kernel module, potentially to achieve persistence
  rootkit
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy