8b37369d6435782c3c8c2771b5aae36291113e2ca19827c54191a7b91f56027d | Triage

Submit
Reports

Overview

overview

7

Static

static

1

yakuza.i686.elf

ubuntu-24.04-amd64

7

Sharing

General

Target

yakuza.i686.elf
Size

120KB
Sample

241123-l3crnaspdz
MD5

119d26f6a01d623944b53b8eaf49eccd
SHA1

2f5de0c0fdb4ccd768b42fdb79fc1f9495766196
SHA256

8b37369d6435782c3c8c2771b5aae36291113e2ca19827c54191a7b91f56027d
SHA512

7d3f95ce10aecad0699091cab0b4c88b60dc865340ffc709e00c73a4418f990bef1f06048e07e0dc998e200de2161c9102273d6acbd6c39819195dd806015627
SSDEEP

3072:Z5oB5/hI5BNbOvwFM9XzYu2dZw2Bv69ny6JP/KTiFi:ZYhI5BQQIXzUZwcv69ny6JHKTiFi

Score

7^/10

discovery linux rootkit

Static task

static1

Behavioral task

behavioral1

Sample

yakuza.i686.elf

Resource

ubuntu2404-amd64-20240523-en

discovery rootkit

ubuntu-24.04-amd64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  yakuza.i686.elf
- Size
  
  120KB
- MD5
  
  119d26f6a01d623944b53b8eaf49eccd
- SHA1
  
  2f5de0c0fdb4ccd768b42fdb79fc1f9495766196
- SHA256
  
  8b37369d6435782c3c8c2771b5aae36291113e2ca19827c54191a7b91f56027d
- SHA512
  
  7d3f95ce10aecad0699091cab0b4c88b60dc865340ffc709e00c73a4418f990bef1f06048e07e0dc998e200de2161c9102273d6acbd6c39819195dd806015627
- SSDEEP
  
  3072:Z5oB5/hI5BNbOvwFM9XzYu2dZw2Bv69ny6JP/KTiFi:ZYhI5BQQIXzUZwcv69ny6JHKTiFi
Score

7^/10

discovery rootkit
- Loads a kernel module
  Loads a Linux kernel module, potentially to achieve persistence
  rootkit
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryrootkit

© 2018-2025

Terms | Privacy