Overview

overview

8

Static

static

dede

ubuntu-18.04-amd64

8

Analysis

  • max time kernel
    21107s
  • max time network
    102s
  • platform
    linux_amd64
  • resource
    ubuntu1804-amd64-en-20211208
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-en-20211208kernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    09-08-2022 23:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    dede

  • Size

    1017KB

  • MD5

    ce08c2da6ba471682d83b150d1bca540

  • SHA1

    0c94216b911a24939b7d085e01423b30582225e7

  • SHA256

    4a4de299b21c2e8cea79bbd53fe4a5e0a3154d071645cfc5803e33a9ff2b0b19

  • SHA512

    147cf883eddcf4dc50ac3cdb093a99c6c3ddac9cba193bd127074f6a14bca03a57185d615df3a56f5335ea64b82fa0b48174d16800cc8dde69e18b4820cbeab6

Score
8/10

Malware Config

Signatures

  • Modifies hosts file 1 IoCs

    Adds to hosts file used for mapping hosts to IP addresses.

  • Writes DNS configuration 1 TTPs 1 IoCs

    Writes data to DNS resolver config file.

  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/dede
    /tmp/dede
    1⤵
    • Modifies hosts file
    • Writes DNS configuration
    • Reads runtime system information
    PID:592

Network

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Dynamic Resolution

1
T1568

Impact

Replay Monitor

Loading Replay Monitor...

Downloads