Analysis
-
max time kernel
149s -
max time network
151s -
platform
ubuntu-24.04_amd64 -
resource
ubuntu2404-amd64-20240523-en -
resource tags
arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system -
submitted
11-01-2025 22:47
Behavioral task
behavioral1
Sample
yakuza.i586.elf
Resource
ubuntu2404-amd64-20240523-en
ubuntu-24.04-amd64
1 signatures
150 seconds
General
-
Target
yakuza.i586.elf
-
Size
89KB
-
MD5
18ca049fd3661aba2d0e3f429b29e5fc
-
SHA1
3e5eec15b44cf1150439d1101e0e83145a720763
-
SHA256
b197cfaf557edf42c3b2572cc2d77594b2bd944a618e44593072e7a254f59850
-
SHA512
367b48b2a886d79718eba3416bf1825c5d1d7a18aaaa62cb38d8c7ed670fd5a5bfc55ea8cc7e1723fae3e532cfeafd054982038cf368347b85306fa5e4d5d40e
-
SSDEEP
1536:9zUF4q9drXpA6kU18k+CNZO9f152upICk/YeLBm55hO9e7she0QznzJYQ2Wk:e44DsU18k3Nk9fCu2CkAf5hO9e7Ue0QW
Score
7/10
Malware Config
Signatures
-
Loads a kernel module 58 IoCs
Loads a Linux kernel module, potentially to achieve persistence
pid Process 2476 yakuza.i586.elf 2476 yakuza.i586.elf 2498 yakuza.i586.elf 2498 yakuza.i586.elf 2499 yakuza.i586.elf 2499 yakuza.i586.elf 2500 yakuza.i586.elf 2500 yakuza.i586.elf 2501 yakuza.i586.elf 2501 yakuza.i586.elf 2502 yakuza.i586.elf 2502 yakuza.i586.elf 2506 yakuza.i586.elf 2506 yakuza.i586.elf 2507 yakuza.i586.elf 2507 yakuza.i586.elf 2508 yakuza.i586.elf 2508 yakuza.i586.elf 2509 yakuza.i586.elf 2509 yakuza.i586.elf 2510 yakuza.i586.elf 2510 yakuza.i586.elf 2511 yakuza.i586.elf 2511 yakuza.i586.elf 2512 yakuza.i586.elf 2512 yakuza.i586.elf 2513 yakuza.i586.elf 2513 yakuza.i586.elf 2514 yakuza.i586.elf 2514 yakuza.i586.elf 2515 yakuza.i586.elf 2515 yakuza.i586.elf 2516 yakuza.i586.elf 2516 yakuza.i586.elf 2517 yakuza.i586.elf 2517 yakuza.i586.elf 2518 yakuza.i586.elf 2518 yakuza.i586.elf 2519 yakuza.i586.elf 2519 yakuza.i586.elf 2520 yakuza.i586.elf 2520 yakuza.i586.elf 2521 yakuza.i586.elf 2521 yakuza.i586.elf 2522 yakuza.i586.elf 2522 yakuza.i586.elf 2523 yakuza.i586.elf 2523 yakuza.i586.elf 2540 yakuza.i586.elf 2540 yakuza.i586.elf 2541 yakuza.i586.elf 2541 yakuza.i586.elf 2545 yakuza.i586.elf 2545 yakuza.i586.elf 2546 yakuza.i586.elf 2546 yakuza.i586.elf 2547 yakuza.i586.elf 2547 yakuza.i586.elf