Analysis

  • max time kernel
    0s
  • max time network
    102s
  • platform
    linux_amd64
  • resource
    ubuntu1804-amd64-en-20211208
  • submitted
    05/04/2022, 19:02

General

  • Target

    0012f3033220902f3f721dc168ffc65f

  • Size

    41KB

  • MD5

    0012f3033220902f3f721dc168ffc65f

  • SHA1

    ab6694377c5a802a2d3c5b7b0fc2ec62273bb442

  • SHA256

    3120ed50f0e924f998f0781248e00cb5c27c4ad809b7d344e782eaaab0da53c3

  • SHA512

    9131a8b463a45d490f599adcb80414384bab96c0a118e0e6a00db9b482f6124fbe53a71cbdd557b207aafcb7cc8cf2f1b22639c9dbda372e0ead467cecd48586

Score
5/10

Malware Config

Signatures

  • Reads runtime system information 2 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • ./0012f3033220902f3f721dc168ffc65f
    ./0012f3033220902f3f721dc168ffc65f
    1⤵
      PID:593
    • /bin/sh
      sh -c "mkdir /9afh7ukhy2/ && >/9afh7ukhy2/9afh7ukhy2 && cd /9afh7ukhy2/ >/dev/null"
      1⤵
        PID:596
        • /bin/mkdir
          mkdir /9afh7ukhy2/
          2⤵
          • Reads runtime system information
          PID:597
      • /bin/sh
        sh -c "mv /tmp/0012f3033220902f3f721dc168ffc65f /9afh7ukhy2/9afh7ukhy2 && chmod 777 /9afh7ukhy2/9afh7ukhy2 >/dev/null"
        1⤵
          PID:598
          • /bin/mv
            mv /tmp/0012f3033220902f3f721dc168ffc65f /9afh7ukhy2/9afh7ukhy2
            2⤵
            • Reads runtime system information
            PID:599
          • /bin/chmod
            chmod 777 /9afh7ukhy2/9afh7ukhy2
            2⤵
              PID:600

          Network

                MITRE ATT&CK Matrix

                Replay Monitor

                Loading Replay Monitor...

                Downloads