444e537f86cbeeea5a4fcf94c485cc9d286de0ccd91718362cecf415bf362bcf

Resubmissions

18/08/2022, 00:52

220818-a8emnafafm 5

27/01/2022, 21:55

220127-1svxtabhd7 5

Analysis

max time kernel
0s
max time network
103s
platform
linux_amd64
resource
ubuntu1804-amd64-en-20211208
submitted
27/01/2022, 21:55

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

444e537f86cbeeea5a4fcf94c485cc9d286de0ccd91718362cecf415bf362bcf
Size

2.7MB
MD5

718ae69788dc752a8db46b0e43e42f13
SHA1

338c16a49899ee08b5284b9bb3b2b14d6e5bdfe3
SHA256

444e537f86cbeeea5a4fcf94c485cc9d286de0ccd91718362cecf415bf362bcf
SHA512

ab13a62a467958a5efeb84938aa2cdf67cca45716046433e47883218b39be3104cfbbade41f7f8de419347810b3f7b7d3a2b2cd617cb9811dc7d7cc78d2ac0a8

Score

5^/10

Malware Config

Signatures

Enumerates kernel/hardware configuration 1 TTPs 1 IoCs

Reads contents of /sys virtual filesystem to enumerate system information.

System Information Discovery

T1082

description	ioc	Process
/sys/kernel/mm/transparent_hugepage/hpage_pmd_size	/sys/kernel/mm/transparent_hugepage/hpage_pmd_size	444e537f86cbeeea5a4fcf94c485cc9d286de0ccd91718362cecf415bf362bcf

./444e537f86cbeeea5a4fcf94c485cc9d286de0ccd91718362cecf415bf362bcf
./444e537f86cbeeea5a4fcf94c485cc9d286de0ccd91718362cecf415bf362bcf
1⤵
- Enumerates kernel/hardware configuration
PID:581

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads