General

  • Target

    fc80ca6d9d137393d77a04e8512f4b29_JaffaCakes118

  • Size

    103KB

  • Sample

    240928-ryd2tatclf

  • MD5

    fc80ca6d9d137393d77a04e8512f4b29

  • SHA1

    13ac3e05d06b928c844876c340e06255df4141e0

  • SHA256

    780fdef23ab68fab87897092701e6d2148de4e8a543655268d77baaac5ca17a8

  • SHA512

    13893ccf7c0a4b4baf8844af7420e4a6725259aa465cfd5aabba62787cede9f7a346bcffd25d186287f699bcd036b0b189115ea9a8ec8902d31b7d96f649251d

  • SSDEEP

    3072:QZF9l/aNozK2lk5X8/jLmqfT1062L4HKcXzGgg9lK:QXtys/HZP2L4HKcXygg9lK

Score
10/10

Malware Config

Extracted

Family

gafgyt

C2

46.29.165.131:17769

Targets

    • Target

      fc80ca6d9d137393d77a04e8512f4b29_JaffaCakes118

    • Size

      103KB

    • MD5

      fc80ca6d9d137393d77a04e8512f4b29

    • SHA1

      13ac3e05d06b928c844876c340e06255df4141e0

    • SHA256

      780fdef23ab68fab87897092701e6d2148de4e8a543655268d77baaac5ca17a8

    • SHA512

      13893ccf7c0a4b4baf8844af7420e4a6725259aa465cfd5aabba62787cede9f7a346bcffd25d186287f699bcd036b0b189115ea9a8ec8902d31b7d96f649251d

    • SSDEEP

      3072:QZF9l/aNozK2lk5X8/jLmqfT1062L4HKcXzGgg9lK:QXtys/HZP2L4HKcXygg9lK

    Score
    7/10
    • Loads a kernel module

      Loads a Linux kernel module, potentially to achieve persistence

MITRE ATT&CK Matrix

Tasks