f47de978da1dbfc5e0f195745e3368d3ceef034e964817c66ba01396a1953d72

Resubmissions

02-06-2022 16:50

18-05-2022 18:03

Target

f47de978da1dbfc5e0f195745e3368d3ceef034e964817c66ba01396a1953d72.bin
Size

30KB
MD5

915ca30a12f19152e6ee7fcd595b7b41
SHA1

0e214a3bb9955b9b792d0ef785beee212a26c7fd
SHA256

f47de978da1dbfc5e0f195745e3368d3ceef034e964817c66ba01396a1953d72
SHA512

7d0a8c44e394355ebba40aeafbc9a36634be63ef386c9dc0c69c2af9dea47e611490e8a20415ec7c3aa9d1b5ffe0a9d43e9ab3f93b1b15762ed4b73c79e67377

Score

5^/10

Reads runtime system information 1 IoCs
Reads data from /proc virtual filesystem.

Processes:

cp

description ioc process

/proc/filesystems /proc/filesystems cp

description	ioc	process
/proc/filesystems	/proc/filesystems	cp

./f47de978da1dbfc5e0f195745e3368d3ceef034e964817c66ba01396a1953d72.bin
./f47de978da1dbfc5e0f195745e3368d3ceef034e964817c66ba01396a1953d72.bin
1⤵
PID:571
- /bin/sh
  sh -c "/bin/rm -f /var/lock/kdumpdb;/bin/cp ./f47de978da1dbfc5e0f195745e3368d3ceef034e964817c66ba01396a1953d72.bin /var/lock/kdumpdb && /bin/chmod 755 /var/lock/kdumpdb && /var/lock/kdumpdb --init"
  2⤵
  PID:572
- - /bin/rm
    /bin/rm -f /var/lock/kdumpdb
    3⤵
    PID:573
- - /bin/cp
    /bin/cp ./f47de978da1dbfc5e0f195745e3368d3ceef034e964817c66ba01396a1953d72.bin /var/lock/kdumpdb
    3⤵
    - Reads runtime system information
    PID:574
- - /bin/chmod
    /bin/chmod 755 /var/lock/kdumpdb
    3⤵
    PID:575
- - /var/lock/kdumpdb
    /var/lock/kdumpdb --init
    3⤵
    PID:576