Overview

overview

10

Static

static

10

ff3a8d23aa...kes118

ubuntu-24.04-amd64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ff3a8d23aab424bfd9db6505b77ab05d_JaffaCakes118

  • Size

    1.1MB

  • Sample

    240929-ynl31a1gme

  • MD5

    ff3a8d23aab424bfd9db6505b77ab05d

  • SHA1

    3228c70108778f9cd58237141652ec4ad2b01b33

  • SHA256

    2c6351a60f83ef185be9991b8ebfc11af7c29c59572a0b2af2471b10392614d7

  • SHA512

    9dfdab046b8d9e079115ad14c1b000ee7a9df5d7e0b8a09c5d7b4f3eb88117f79652f4a5582e69b1e9e2983564253005fdd82748e03722ccbafe06799d8fe9bd

  • SSDEEP

    24576:4vRE7caCfKGPqVEDNLFxKsfawI+gIGYuuCol7r:4vREKfPqVE5jKsfawRHGVo7r

Score
10/10
mrblackdefense_evasiondiscoverylinuxpersistencerootkit

Malware Config

Targets

    • Target

      ff3a8d23aab424bfd9db6505b77ab05d_JaffaCakes118

    • Size

      1.1MB

    • MD5

      ff3a8d23aab424bfd9db6505b77ab05d

    • SHA1

      3228c70108778f9cd58237141652ec4ad2b01b33

    • SHA256

      2c6351a60f83ef185be9991b8ebfc11af7c29c59572a0b2af2471b10392614d7

    • SHA512

      9dfdab046b8d9e079115ad14c1b000ee7a9df5d7e0b8a09c5d7b4f3eb88117f79652f4a5582e69b1e9e2983564253005fdd82748e03722ccbafe06799d8fe9bd

    • SSDEEP

      24576:4vRE7caCfKGPqVEDNLFxKsfawI+gIGYuuCol7r:4vREKfPqVE5jKsfawRHGVo7r

    Score
    7/10
    defense_evasiondiscoverypersistencerootkit

    • File and Directory Permissions Modification

      Adversaries may modify file or directory permissions to evade defenses.

      defense_evasion

    • Executes dropped EXE

    • Loads a kernel module

      Loads a Linux kernel module, potentially to achieve persistence

      rootkit

    • Write file to user bin folder

      persistence

    • Writes file to system bin folder

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks