Overview

overview

5

Static

static

4

var www ht...han.js

windows7-x64

1

var www ht...han.js

windows10-2004-x64

1

var www ht...022.js

windows7-x64

1

var www ht...022.js

windows10-2004-x64

1

var www ht...api.js

windows7-x64

1

var www ht...api.js

windows10-2004-x64

1

var www ht...h.alfa

ubuntu-18.04-amd64

5

var www ht...h.alfa

debian-9-armhf

5

var www ht...h.alfa

debian-9-mips

1

var www ht...h.alfa

debian-9-mipsel

5

var www ht...r.alfa

ubuntu-18.04-amd64

var www ht...r.alfa

debian-9-armhf

var www ht...r.alfa

debian-9-mips

var www ht...r.alfa

debian-9-mipsel

var www ht...l.alfa

ubuntu-18.04-amd64

5

var www ht...l.alfa

debian-9-armhf

1

var www ht...l.alfa

debian-9-mips

1

var www ht...l.alfa

debian-9-mipsel

5

var www ht...y.alfa

ubuntu-18.04-amd64

var www ht...y.alfa

debian-9-armhf

var www ht...y.alfa

debian-9-mips

var www ht...y.alfa

debian-9-mipsel

var www ht...han.js

windows7-x64

1

var www ht...han.js

windows10-2004-x64

1

var www ht...ory.js

windows7-x64

1

var www ht...ory.js

windows10-2004-x64

1

var www ht...a.html

windows7-x64

1

var www ht...a.html

windows10-2004-x64

1

var www ht...o.html

windows7-x64

1

var www ht...o.html

windows10-2004-x64

1

var www ht...oto.js

windows7-x64

1

var www ht...oto.js

windows10-2004-x64

1

Resubmissions

19-07-2023 21:16

230719-z4frlabb95 4

19-07-2023 21:13

230719-z2sndabb89 5

11-11-2022 04:56

221111-fkt1bsbcbk 5

Analysis

  • platform
    linux_mipsel
  • resource
    debian9-mipsel-en-20211208
  • resource tags

    arch:mipselimage:debian9-mipsel-en-20211208kernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
  • submitted
    11-11-2022 04:56

Sharing

Copy URL
Twitter E-mail

Errors

Reason
platform exec: bad magic number '[35 33 47 117]' in record at byte 0x0 payload error: fork/exec /tmp/var www html kemhan/alfacgiapi/py.alfa: no such file or directory
Report Analysis Logs

General

  • Target

    var www html kemhan/alfacgiapi/py.alfa

  • Size

    463B

  • MD5

    c5dcb1cdc47f271f42448a5298147924

  • SHA1

    6dd5a25833ef3a5ac4cb716564f205d63cf6c674

  • SHA256

    a2b2d11669115dab24ee1f82295fce67f1f93e316efe11a2c95018491e5cc484

  • SHA512

    698b1ceb97640f11af8c95d4b7ca40980cae3b3d586da6c63c2490487a228314a1cccbe40665ddea3ba28b9ba50913af38e33dd44bf346f187667f591f03bb22

Score
1/10

Malware Config

Signatures

Processes

  • /tmp/var www html kemhan/alfacgiapi/py.alfa
    "/tmp/var www html kemhan/alfacgiapi/py.alfa"
    1⤵
      PID:327

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads