ae909c579695710e8a7b46407171bd5aea35dac97c4d61e0d11de1610ef11754 | Triage

Analysis

max time kernel
9561s
max time network
143s
platform
ubuntu-18.04_amd64
resource
ubuntu1804-amd64-20221111-en
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-20221111-enkernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
02-03-2023 10:01

Sharing

Report Analysis Logs

General

Target

x86.elf
Size

112KB
MD5

bb761308da7f7b05e5ac830f43c83f0a
SHA1

2e60c6db8fd39745c4e28eb7ccdb74b9a0fc63ce
SHA256

ae909c579695710e8a7b46407171bd5aea35dac97c4d61e0d11de1610ef11754
SHA512

de87f8c73dfa9c4f5a4f4e4cd1fbce817d67b8a0b502830c647e4000e85f05a6c3a1e5cfa68dc8a3943b9bc897d651ad81d6567908cc96916a7144f806f3d61f
SSDEEP

3072:Ld0wlSAewzi+Xn+8Uhw6W+aPiJmDk1c8xF6KjW:jfO8IBTJmDk1c8xF6KjW

Score

9^/10

Malware Config

Signatures

Modifies the Watchdog daemon 1 TTPs
Malware like Mirai modify the Watchdog to prevent it restarting an infected system.

Impair Defenses
T1562

/tmp/x86.elf
/tmp/x86.elf
1⤵
PID:584

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...