Analysis
-
max time kernel
0s -
max time network
1s -
platform
linux_amd64 -
resource
ubuntu-amd64 -
submitted
24-02-2021 04:32
Static task
static1
Behavioral task
behavioral1
Sample
505ef305205d2a7ddb9524226219145b
Resource
ubuntu-amd64
linux_amd64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
505ef305205d2a7ddb9524226219145b
Resource
debian9-mipsel
linux_mipsel
0 signatures
0 seconds
Behavioral task
behavioral3
Sample
505ef305205d2a7ddb9524226219145b
Resource
debian9-mipsbe
linux_mips
0 signatures
0 seconds
Errors
Reason
platform exec: signal: killed: 2020/11/19 16:46:37 insmod stahp.ko pid=555 receiver=10.4.0.1:34937
General
-
Target
505ef305205d2a7ddb9524226219145b
-
Size
79KB
-
MD5
505ef305205d2a7ddb9524226219145b
-
SHA1
714948f6bc68e14f60bc8bc30567506f67e58932
-
SHA256
d0ea5161fe1f84b6b1a5061dd3c19363be4be1f03ade722e289f7d1117dd0f12
-
SHA512
9f5d8ebdf995d0ba658e10352197a72f2f59cb634d3b55acc0984098ba335124b5c641f7db32f479866b0a8a2c489cf401fc9f6d075de9cc3267bf83f0a1490c
Score
5/10
Malware Config
Signatures
-
Reads runtime system information 11 IoCs
Reads data from /proc virtual filesystem.
Processes:
description ioc /proc/ /proc/ /proc/416/cmdline /proc/416/cmdline /proc/443/cmdline /proc/443/cmdline /proc/477/cmdline /proc/477/cmdline /proc/562/cmdline /proc/562/cmdline /proc/447/cmdline /proc/447/cmdline /proc/479/cmdline /proc/479/cmdline /proc/546/cmdline /proc/546/cmdline /proc/555/cmdline /proc/555/cmdline /proc/561/cmdline /proc/561/cmdline /proc/565/cmdline /proc/565/cmdline