Overview

overview

10

Static

static

10

b64f849293...kes118

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    151s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240523-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    22-08-2024 04:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b64f8492938e7033d1f0034191d733f4_JaffaCakes118

  • Size

    1.2MB

  • MD5

    b64f8492938e7033d1f0034191d733f4

  • SHA1

    7ef5296349d30664523ce168777b79be56376468

  • SHA256

    6704eadedce902d19a21e6c3687ea87cc4a191a23acc23c912322419ffd1ded9

  • SHA512

    735534294f5a9bacc99c6b71f9b5852204af82dd284a70377eb9fb9a81b5c695f15a3973c46adaa24fd532590993bf538c6cbf3240c71e3363a7a3b01dc5a7fa

  • SSDEEP

    24576:e845rUHu6gVJKG75oFpA0VWiX4G2y1q2rJp0:7451RVJKGtSA0VWioVu9p0

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 43 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/b64f8492938e7033d1f0034191d733f4_JaffaCakes118
    /tmp/b64f8492938e7033d1f0034191d733f4_JaffaCakes118
    1⤵
    • Loads a kernel module
    PID:2786

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/DbSecuritySpt
    Filesize

    64B

    MD5

    6ede591b61dc4f58217262dc4b5e3870

    SHA1

    44b2372ef132e4ca44f179a984569184c4a22499

    SHA256

    9c91f6d4447ef3670e1d39480f669684c8992ba7d092c612510212989431aa84

    SHA512

    f587ab2da1fd846a6c0695ce719ac9914d1c069ae7f704259657240dcd9eaec6bb16ca3662334801f30c8b06904ad46e6f3fc52c22b220325c2c0c992aff24ea

    Download Submit

  • /tmp/conf.n
    Filesize

    73B

    MD5

    3ef7f6dd1d40d8d7eaa39d250e41ca50

    SHA1

    86570fe69bd2fb92c8db84ebb1937b5dbe332b69

    SHA256

    0d15116dd6e847d0ee09b76d73127ee4e4363b2f40ebed36bef587ee837189f7

    SHA512

    61a6910c797d516bfae07e81b86f6689f92aba75793ca9150661cb3c285710a25d62531e3e1430ea4116458dc89b11763ff5dbd2129eab4e437c8c8164c4769c

    Download Submit

  • /tmp/gates.lod
    Filesize

    4B

    MD5

    4ea6a546c19499318091a9df40a13181

    SHA1

    e36e019e5bb8895fd3c5ab4a2530b467bf564f11

    SHA256

    a3f0ac6f4436d7e6757a4e990486299f1a37db9a2de46df297fb2a24f2e9d5d8

    SHA512

    b393c3d30fc2b704b9f579b02fd602d50ee52944ed54059585d3b1de27f373e4b139a051f49bafc97470ec9f4041680c6075a7afa7e13ee611d0aaff7d1d2021

    Download Submit

  • /tmp/notify.file
    Filesize

    51B

    MD5

    1b8665cfab73c66c077a891853789d90

    SHA1

    e1670118619ff68010d641b8defd7bf26a16348d

    SHA256

    c9f18fb13a4115e0018dcd2698396a18c17477181c697afba0a4bf3d7231101c

    SHA512

    47d28e833a93991f1b7f3de221194bb4e2fb1e0c32dabfba8dd9d8290a4aff56455fbaf7a9c664d08b11d118f86a9cc90c6cb79be604462b931d1d8b84ee93b1

    Download Submit