Overview

overview

5

Static

static

netpbm-10....ure.pl

ubuntu-18.04-amd64

5

netpbm-10....ure.pl

debian-9-armhf

1

netpbm-10....ure.pl

debian-9-mips

5

netpbm-10....ure.pl

debian-9-mipsel

5

netpbm-10..../mkdeb

ubuntu-18.04-amd64

1

netpbm-10..../mkdeb

debian-9-armhf

1

netpbm-10..../mkdeb

debian-9-mips

1

netpbm-10..../mkdeb

debian-9-mipsel

5

netpbm-10....stinst

ubuntu-18.04-amd64

5

netpbm-10....stinst

debian-9-armhf

1

netpbm-10....stinst

debian-9-mips

5

netpbm-10....stinst

debian-9-mipsel

1

netpbm-10....postrm

ubuntu-18.04-amd64

5

netpbm-10....postrm

debian-9-armhf

1

netpbm-10....postrm

debian-9-mips

5

netpbm-10....postrm

debian-9-mipsel

5

netpbm-10....all.sh

ubuntu-18.04-amd64

5

netpbm-10....all.sh

debian-9-armhf

5

netpbm-10....all.sh

debian-9-mips

5

netpbm-10....all.sh

debian-9-mipsel

5

netpbm-10....pbm.pl

ubuntu-18.04-amd64

5

netpbm-10....pbm.pl

debian-9-armhf

1

netpbm-10....pbm.pl

debian-9-mips

5

netpbm-10....pbm.pl

debian-9-mipsel

5

netpbm-10....allosf

ubuntu-18.04-amd64

5

netpbm-10....allosf

debian-9-armhf

5

netpbm-10....allosf

debian-9-mips

1

netpbm-10....allosf

debian-9-mipsel

5

netpbm-10....rge.sh

ubuntu-18.04-amd64

5

netpbm-10....rge.sh

debian-9-armhf

5

netpbm-10....rge.sh

debian-9-mips

1

netpbm-10....rge.sh

debian-9-mipsel

5

Analysis

  • max time kernel
    0s
  • max time network
    103s
  • platform
    linux_amd64
  • resource
    ubuntu1804-amd64-en-20211208
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-en-20211208kernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    02-10-2022 23:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    netpbm-10.73.41/buildtools/installosf

  • Size

    780B

  • MD5

    0cf0303c5188de620d162124996e9d18

  • SHA1

    7d1905b921bc8b0c660b4fb0c5f43b6e7bdb29a5

  • SHA256

    89be0394e9272e642be2481cc45234ef014f725bba86aa31d0215ca9873fff1e

  • SHA512

    6fc41564c3744b0840ef147e2c7ef58d797098e728b767cd5bb4f15b84b9fbae378fa1c1d13257b4ee3db5c48738dfee9815f9cc358ed67b5ec1100e12440b5b

Score
5/10

Malware Config

Signatures

  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

  • Writes file to tmp directory 1 IoCs

    Malware often drops required files in the /tmp directory.

Processes

  • /tmp/netpbm-10.73.41/buildtools/installosf
    /tmp/netpbm-10.73.41/buildtools/installosf
    1⤵
    • Writes file to tmp directory
    PID:581
    • /usr/bin/install
      install -f -m 444
      2⤵
      • Reads runtime system information
      PID:582

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads