Overview

overview

10

Static

static

10

.rsync/a/anacron

linux_amd64

.rsync/c/go

linux_amd64

.rsync/c/go

linux_mipsel

.rsync/c/go

linux_mips

.rsync/c/golan

linux_amd64

.rsync/c/golan

linux_mipsel

.rsync/c/golan

linux_mips

.rsync/c/l...c.so.6

linux_amd64

.rsync/c/l...l.so.2

linux_amd64

.rsync/c/l...s.so.2

linux_amd64

.rsync/c/l...s.so.2

linux_amd64

.rsync/c/l...d.so.0

linux_amd64

.rsync/c/l....23.so

linux_amd64

.rsync/c/l...v.so.2

linux_amd64

.rsync/c/lib/32/tsm

linux_amd64

.rsync/c/l...c.so.6

linux_amd64

.rsync/c/l...l.so.2

linux_amd64

.rsync/c/l...s.so.2

linux_amd64

.rsync/c/l...s.so.2

linux_amd64

.rsync/c/l...d.so.0

linux_amd64

.rsync/c/l....23.so

linux_amd64

.rsync/c/l...v.so.2

linux_amd64

.rsync/c/lib/64/tsm

linux_amd64

.rsync/c/l...v7l.so

linux_amd64

.rsync/c/l...v7l.so

linux_mipsel

.rsync/c/l...v7l.so

linux_mips

.rsync/c/l...c.so.6

linux_amd64

.rsync/c/l...c.so.6

linux_mipsel

.rsync/c/l...c.so.6

linux_mips

.rsync/c/l...l.so.2

linux_amd64

.rsync/c/l...l.so.2

linux_mipsel

.rsync/c/l...l.so.2

linux_mips

Analysis

  • max time kernel
    0s
  • max time network
    0s
  • platform
    linux_amd64
  • resource
    ubuntu-amd64
  • submitted
    15-09-2021 06:04

Sharing

Copy URL
Twitter E-mail

Errors

Reason
Remote task has failed: platform exec: exit status 1: 2021/08/12 14:12:33 insmod stahp.ko pid=626 receiver=10.4.0.1:41399 2021/08/12 14:12:37 Failed to copy payload to .rsync/c/lib/32/tsm -> open .rsync/c/lib/32/tsm: no such file or directory 2021/08/12 14:12:37 Payload error: fork/exec /tmp/082971565/payload.dat: no such file or directory
Report Analysis Logs

General

  • Target

    .rsync/c/lib/32/tsm

  • Size

    144KB

  • MD5

    24175a52f0df8a88a3160a4bd5a59d29

  • SHA1

    82c1c28a394bbeb48bbf85cec98f78ef5b6f49c7

  • SHA256

    ac2513b3d37de1e89547d12d4e05a899848847571a3b11b18db0075149e85dcc

  • SHA512

    1a70644bfe3a9d6c7d476df2d30ddb7975d7625987bc3141c19e872a5b1c46712cd30b62856611eb52b9f3bfa801812ebde96d2f5d5d9ee337e8b5b89d9a4495

Score
1/10

Malware Config

Signatures

Processes

  • /tmp/082971565/payload.dat
    /tmp/082971565/payload.dat
    1⤵
      PID:674

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads