e534ec51022f225da257b09fbf4ff2c8eb7dc2c3c5286ed5e45609276663b7ee | Triage

Analysis

max time kernel
0s
max time network
103s
platform
linux_amd64
resource
ubuntu1804-amd64-en-20211208
submitted
10-07-2022 03:51

Sharing

Report Analysis Logs

General

Target

i686
Size

62KB
MD5

a0248fc3f5d23f668433c0987adb024c
SHA1

e9568eb5b4304b8cd7ae0c9bfb8b660703e333ee
SHA256

e534ec51022f225da257b09fbf4ff2c8eb7dc2c3c5286ed5e45609276663b7ee
SHA512

0372de571c136b8d473afac6a2d2de989414e4942a909edb434862758df2138df6a44d493ec8f895dc30eb369777eb34dc08e8a0929032ad7ccb6b6459e41805

Score

5^/10

Malware Config

Signatures

Reads runtime system information 2 IoCs

Reads data from /proc virtual filesystem.

description	ioc	Process
/proc/filesystems	/proc/filesystems	mv
/proc/filesystems	/proc/filesystems	mkdir

./i686
./i686
1⤵
PID:577

/bin/sh
sh -c "mkdir /6i3mw65ohx/ && >/6i3mw65ohx/6i3mw65ohx && cd /6i3mw65ohx/ >/dev/null"
1⤵
PID:580
- /bin/mkdir
  mkdir /6i3mw65ohx/
  2⤵
  - Reads runtime system information
  PID:581

/bin/sh
sh -c "mv /tmp/i686 /6i3mw65ohx/6i3mw65ohx && chmod 777 /6i3mw65ohx/6i3mw65ohx >/dev/null"
1⤵
PID:582
- /bin/mv
  mv /tmp/i686 /6i3mw65ohx/6i3mw65ohx
  2⤵
  - Reads runtime system information
  PID:583
- /bin/chmod
  chmod 777 /6i3mw65ohx/6i3mw65ohx
  2⤵
  PID:584

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads