877056446a26876a1e5f500c766cb4d8b110a3854ca4e7d907b73af6c54dd232 | Triage

Analysis

max time kernel
0s
max time network
134s
platform
ubuntu-18.04_amd64
resource
ubuntu1804-amd64-20221111-en
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-20221111-enkernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
28-11-2022 18:59

Sharing

Report Analysis Logs

General

Target

877056446a26876a1e5f500c766cb4d8b110a3854ca4e7d907b73af6c54dd232
Size

248B
MD5

f46d8a17ffeae4e0c5cb1d6a391da389
SHA1

426c1938e53e46f4d00005086128da9e74bd9c5a
SHA256

877056446a26876a1e5f500c766cb4d8b110a3854ca4e7d907b73af6c54dd232
SHA512

f70e5d43c26875784f2e6774d0a133e37aef49e04e99decbd970707d1573d6233887d606b4c8bda913c0427e542771bbf75c3c086f0f2b823ce9798dea249a9a

Score

5^/10

Malware Config

Signatures

Writes file to tmp directory 1 IoCs

Malware often drops required files in the /tmp directory.

Processes:

bash

description	ioc	process
/tmp/877056446a26876a1e5f500c766cb4d8b110a3854ca4e7d907b73af6c54dd232	/tmp/877056446a26876a1e5f500c766cb4d8b110a3854ca4e7d907b73af6c54dd232	bash

/tmp/877056446a26876a1e5f500c766cb4d8b110a3854ca4e7d907b73af6c54dd232
/tmp/877056446a26876a1e5f500c766cb4d8b110a3854ca4e7d907b73af6c54dd232
1⤵
PID:585

/usr/local/sbin/bash
bash /tmp/877056446a26876a1e5f500c766cb4d8b110a3854ca4e7d907b73af6c54dd232
1⤵
PID:585

/usr/local/bin/bash
bash /tmp/877056446a26876a1e5f500c766cb4d8b110a3854ca4e7d907b73af6c54dd232
1⤵
PID:585

/usr/sbin/bash
bash /tmp/877056446a26876a1e5f500c766cb4d8b110a3854ca4e7d907b73af6c54dd232
1⤵
PID:585

/usr/bin/bash
bash /tmp/877056446a26876a1e5f500c766cb4d8b110a3854ca4e7d907b73af6c54dd232
1⤵
PID:585

/sbin/bash
bash /tmp/877056446a26876a1e5f500c766cb4d8b110a3854ca4e7d907b73af6c54dd232
1⤵
PID:585

/bin/bash
bash /tmp/877056446a26876a1e5f500c766cb4d8b110a3854ca4e7d907b73af6c54dd232
1⤵
- Writes file to tmp directory
PID:585

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...