Analysis
-
max time kernel
21391s -
max time network
150s -
platform
linux_amd64 -
resource
ubuntu1804-amd64-en-20211208 -
resource tags
arch:amd64arch:i386image:ubuntu1804-amd64-en-20211208kernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system -
submitted
13-08-2022 06:52
Behavioral task
behavioral1
Sample
3a0e9d517e3bebacf9ec2bffd462dd2b
Resource
ubuntu1804-amd64-en-20211208
ubuntu-18.04-amd64
1 signatures
150 seconds
General
-
Target
3a0e9d517e3bebacf9ec2bffd462dd2b
-
Size
49KB
-
MD5
3a0e9d517e3bebacf9ec2bffd462dd2b
-
SHA1
eb4293c2457d2ec39a5354a7bf2968599012691d
-
SHA256
c43fdfd1a54283ead64c29da96721474a6fdc20919d27ebb2042a0bac21fb1a6
-
SHA512
a763f5cde7144809f8745422d6fb4534c6df350899a99b684dddc3cff07cd5abe04b25ed3c60772b1634dcd6dcb57362471df24cdba44278ac27a1a1d9a4dbba
Score
5/10
Malware Config
Signatures
-
Reads runtime system information 2 IoCs
Reads data from /proc virtual filesystem.
description ioc Process /proc/filesystems /proc/filesystems mkdir /proc/filesystems /proc/filesystems mv
Processes
-
/tmp/3a0e9d517e3bebacf9ec2bffd462dd2b/tmp/3a0e9d517e3bebacf9ec2bffd462dd2b1⤵PID:592
-
/bin/shsh -c "rm -rf bin/watchdog && mkdir bin; >bin/watchdog && mv /tmp/3a0e9d517e3bebacf9ec2bffd462dd2b bin/watchdog; chmod 777 bin/watchdog"1⤵PID:593
-
/bin/rmrm -rf bin/watchdog2⤵PID:594
-
-
/bin/mkdirmkdir bin2⤵
- Reads runtime system information
PID:595
-
-
/bin/mvmv /tmp/3a0e9d517e3bebacf9ec2bffd462dd2b bin/watchdog2⤵
- Reads runtime system information
PID:596
-
-
/bin/chmodchmod 777 bin/watchdog2⤵PID:597
-