Overview

overview

5

Static

static

9746fee7b1...86.tar

windows7-x64

3

9746fee7b1...86.tar

windows10-2004-x64

3

usr/bin/davtest

ubuntu-18.04-amd64

5

usr/bin/davtest

debian-9-armhf

5

usr/bin/davtest

debian-9-mips

5

usr/bin/davtest

debian-9-mipsel

5

usr/share/...md.asp

windows7-x64

3

usr/share/...md.asp

windows10-2004-x64

3

usr/share/...md.asp

windows7-x64

3

usr/share/...md.asp

windows10-2004-x64

3

usr/share/...d.html

windows7-x64

1

usr/share/...d.html

windows10-2004-x64

1

usr/share/...md.cgi

ubuntu-18.04-amd64

5

usr/share/...md.cgi

debian-9-armhf

5

usr/share/...md.cgi

debian-9-mips

5

usr/share/...md.cgi

debian-9-mipsel

5

usr/share/...cmd.js

windows7-x64

1

usr/share/...cmd.js

windows10-2004-x64

1

usr/share/...cmd.js

windows7-x64

1

usr/share/...cmd.js

windows10-2004-x64

1

usr/share/...cmd.pl

ubuntu-18.04-amd64

5

usr/share/...cmd.pl

debian-9-armhf

5

usr/share/...cmd.pl

debian-9-mips

5

usr/share/...cmd.pl

debian-9-mipsel

5

usr/share/...est.pl

ubuntu-18.04-amd64

5

usr/share/...est.pl

debian-9-armhf

5

usr/share/...est.pl

debian-9-mips

5

usr/share/...est.pl

debian-9-mipsel

5

Analysis

  • max time kernel
    0s
  • max time network
    156s
  • platform
    debian-9_mipsel
  • resource
    debian9-mipsel-20221111-en
  • resource tags

    arch:mipselimage:debian9-mipsel-20221111-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
  • submitted
    27/11/2022, 18:03

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    usr/bin/davtest

  • Size

    58B

  • MD5

    0cf0ccdcd32d356ddbc429c42a06177a

  • SHA1

    2d0cae0cdb72d4bbd7dea9da781179d1799fa0df

  • SHA256

    b595afb99218e756a22a6b0eaff20104969b621bcb1daa1fe95c7ecfdc45afe5

  • SHA512

    a3b78185b6ef3e85164625d44810b18eb6790b77ff08bb556b33506152be7cbdddc559702136ce08e6eb53f904e7c4dc8beee8bc3b0e97ffd31bef7d7bc6c85e

Score
5/10

Malware Config

Signatures

  • Writes file to tmp directory 1 IoCs

    Malware often drops required files in the /tmp directory.

Processes

  • /tmp/usr/bin/davtest
    /tmp/usr/bin/davtest
    1⤵
    • Writes file to tmp directory
    PID:323
  • /usr/local/sbin/perl
    perl davtest.pl
    1⤵
      PID:323
    • /usr/local/bin/perl
      perl davtest.pl
      1⤵
        PID:323
      • /usr/sbin/perl
        perl davtest.pl
        1⤵
          PID:323
        • /usr/bin/perl
          perl davtest.pl
          1⤵
            PID:323

          Network

                MITRE ATT&CK Matrix

                Replay Monitor

                Loading Replay Monitor...

                Downloads