Overview

overview

10

Static

static

10

f134f8f0cd...kes118

ubuntu-24.04-amd64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f134f8f0cdf87e2f3f4d9cbcc0f86b39_JaffaCakes118

  • Size

    1.1MB

  • Sample

    240922-d72mkszfrj

  • MD5

    f134f8f0cdf87e2f3f4d9cbcc0f86b39

  • SHA1

    584f15ff5f2188a25b8b27d96290c3550e4dffde

  • SHA256

    478e45caa33dd580e1b3805d84fffd190d9cee3635137ea1d3fc4220626519a7

  • SHA512

    faea0bbb90f6b0c84daf124c7db0cf1ef7fc1667e2636bab76ca06172fe930c0b6c363116338d4aa14a40b97a94e61b52f125a7ed76a2d51983078c24668c986

  • SSDEEP

    24576:4vRE7caCfKGPqVEDNLFxKsfa2I+gIGYuuCol7r:4vREKfPqVE5jKsfa2RHGVo7r

Score
10/10
mrblackdefense_evasiondiscoverylinuxpersistencerootkit

Malware Config

Targets

    • Target

      f134f8f0cdf87e2f3f4d9cbcc0f86b39_JaffaCakes118

    • Size

      1.1MB

    • MD5

      f134f8f0cdf87e2f3f4d9cbcc0f86b39

    • SHA1

      584f15ff5f2188a25b8b27d96290c3550e4dffde

    • SHA256

      478e45caa33dd580e1b3805d84fffd190d9cee3635137ea1d3fc4220626519a7

    • SHA512

      faea0bbb90f6b0c84daf124c7db0cf1ef7fc1667e2636bab76ca06172fe930c0b6c363116338d4aa14a40b97a94e61b52f125a7ed76a2d51983078c24668c986

    • SSDEEP

      24576:4vRE7caCfKGPqVEDNLFxKsfa2I+gIGYuuCol7r:4vREKfPqVE5jKsfa2RHGVo7r

    Score
    7/10
    defense_evasiondiscoverypersistencerootkit

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

      defense_evasion

    • Executes dropped EXE

    • Loads a kernel module

      Loads a Linux kernel module, potentially to achieve persistence

      rootkit

    • Write file to user bin folder

      persistence

    • Writes file to system bin folder

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks