4d18cf55ce50311a9abbaf8a3c4217345c0e20ac8da2f756b61e35785d0e48a2

Analysis

max time kernel
0s
max time network
155s
platform
linux_amd64
resource
ubuntu1804-amd64-en-20211208
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-en-20211208kernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
11-08-2022 00:45

Target

09c19bad9c96a342b0481d331cc440dd
Size

83KB
MD5

09c19bad9c96a342b0481d331cc440dd
SHA1

7b1ab67b258a223b472bcad9bf75b4ea2289b4b3
SHA256

4d18cf55ce50311a9abbaf8a3c4217345c0e20ac8da2f756b61e35785d0e48a2
SHA512

42a4f056702a5acbd020a917e7f3ac0b2a3de62fa3667df135ad3214609ee64710bfb0d78373b284db90509731601b12ca1e444fcbc12853b52546030a5ade54

Score

7^/10

Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.

System Network Configuration Discovery
T1016

Processes:

09c19bad9c96a342b0481d331cc440dd

description ioc process

/proc/net/route /proc/net/route 09c19bad9c96a342b0481d331cc440dd
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.

System Network Configuration Discovery
T1016

Processes:

09c19bad9c96a342b0481d331cc440dd

description ioc process

/proc/net/route /proc/net/route 09c19bad9c96a342b0481d331cc440dd

description	ioc	process
/proc/net/route	/proc/net/route	09c19bad9c96a342b0481d331cc440dd

description	ioc	process
/proc/net/route	/proc/net/route	09c19bad9c96a342b0481d331cc440dd

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact