Overview

overview

10

Static

static

10

b39fccf202...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    148s
  • max time network
    149s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240523-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    21-08-2024 13:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b39fccf20218e716dedacb676892562d_JaffaCakes118

  • Size

    1.1MB

  • MD5

    b39fccf20218e716dedacb676892562d

  • SHA1

    e9a81f9111dcde7d278db80e415b14e09cfadfe8

  • SHA256

    b6cdb1e6118d80ce6ce979443f406eb193e445d0eb6c501294691b453ea68b40

  • SHA512

    9218116c3089ccc59ad368942555272922c4f256c716c1b0989519b34a6f23653443c02a11bbb989a2e4ea23d8e6c89c3d7b56ee83ba68a12a0af677e0cdee20

  • SSDEEP

    24576:4vRE7caCfKGPqVEDNLFxKsfa9I+gIGYuuCol7r:4vREKfPqVE5jKsfa9RHGVo7r

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 37 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/b39fccf20218e716dedacb676892562d_JaffaCakes118
    /tmp/b39fccf20218e716dedacb676892562d_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2449

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/VsystemsshMdt
    Filesize

    64B

    MD5

    fb29590a2c2e00619f851722f3b23f22

    SHA1

    7eea9203c25af1db5f2fbc2e4c8c61c970161dd9

    SHA256

    5d2cf5ead9e8f300e3d3c26a0a9c881008d4e38cc1ed9342985fb1daa85d7885

    SHA512

    4f7852832354f35ec8c27868bc4f376c937d8c2fe06fcb09af94c0e7777977bd98b75c61d5e91e6578a563aa290dfe344599e9b0d869f2c1bb06c5b511a335f2

    Download Submit

  • /tmp/conf.n
    Filesize

    69B

    MD5

    e385ca97015f3c790b2476d98918ad31

    SHA1

    a8fe14d04ce06fa01b5b5a396c7df8ee21d5e1eb

    SHA256

    b917a6f68cfc35a13a31b9ceaf272d44c95c6485f29a5a7155fe9ffbcffaed6f

    SHA512

    4c8e102c76c1317318dcd87d80d41f29c7e2e180506ed1449dfcf4614a859ac16d6f587d78879bcfe12c032a97878cca20bda5eba99aa850582e82cafce455d4

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    06a00e4e2b4666a6e42cd771c1e97e0e

    SHA1

    9cfac28285d8db6a0294cbd4b87de39a4af6b75f

    SHA256

    0e776c71995c05549b46ffa0868374670ba2bb04dfbfc0c2335d8cbfa9a8d2a8

    SHA512

    c2be625548b8d2c6c788740bdd75bb702c05079c9dfc28db564880039c5b41945adbe1918340fa8c573008c1701cf3656f7c319fff93b8825b82d533f5f04842

    Download Submit

  • /tmp/vga.conf
    Filesize

    4B

    MD5

    49d4b2faeb4b7b9e745775793141e2b2

    SHA1

    3dae524e50058ba5db59f21a1e88a4afb176c122

    SHA256

    b0b03d744a85f4459c71437fe196dd925a299a06ae7a425615c903c97c36b8fb

    SHA512

    55d648b97149a610c92bd881b5f99e0dcb6fa5bab48de9184dbda98cab5a8d33c4e5c91b2fffbe5da8f404db0d65b840a868d63a8403a584a5b721086b52f821

    Download Submit