Overview

overview

10

Static

static

10

fuckjewish...86.elf

ubuntu-18.04-amd64

9

Analysis

  • max time kernel
    0s
  • max time network
    134s
  • platform
    ubuntu-18.04_amd64
  • resource
    ubuntu1804-amd64-20221111-en
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-20221111-enkernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    19-03-2023 10:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fuckjewishpeople.x86.elf

  • Size

    100KB

  • MD5

    6bfb0f570f5282c1df9e011bb6dab841

  • SHA1

    e2cb860b2979e2109c383519020130ecb81923d1

  • SHA256

    e8d7192e8cfab7cc9c7eeac3aa07be67f7acaab5e0ad7dcd2fab905b4a9fd013

  • SHA512

    2408f3021a37f40d4b3142f80122819b717febdcccbb292236035275a54d6fba2b75e72d45f124570aa3fe786461b4b1013cae4bbedcdff79ceefd59cd097a39

  • SSDEEP

    3072:62RPcCPOkfQfNipGd6phaE/JVog99um2XFYZb0e:6I3fQ8rphaE/JVog99um2XFYZb0e

Score
9/10
persistence

Malware Config

Signatures

  • Writes file to system bin folder 1 TTPs 64 IoCs
  • Creates/modifies Cron job 1 TTPs 64 IoCs

    Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    persistence
  • Reads runtime system information 64 IoCs

    Reads data from /proc virtual filesystem.

  • Writes file to tmp directory 64 IoCs

    Malware often drops required files in the /tmp directory.

Processes

  • /tmp/fuckjewishpeople.x86.elf
    /tmp/fuckjewishpeople.x86.elf
    1⤵
    • Writes file to system bin folder
    PID:590
    • /tmp/filek84myY
      /tmp/fuckjewishpeople.x86.elf
      2⤵
      • Writes file to system bin folder
      • Reads runtime system information
      PID:595
      • /tmp/fileWHV927
        /tmp/fuckjewishpeople.x86.elf
        3⤵
          PID:596
          • /tmp/filebdT3nE
            /tmp/fuckjewishpeople.x86.elf
            4⤵
            • Writes file to system bin folder
            • Creates/modifies Cron job
            • Reads runtime system information
            PID:597
            • /tmp/fileDBjsyb
              /tmp/fuckjewishpeople.x86.elf
              5⤵
              • Writes file to system bin folder
              • Creates/modifies Cron job
              PID:598
              • /tmp/file5zpvxE
                /tmp/fuckjewishpeople.x86.elf
                6⤵
                • Writes file to system bin folder
                • Creates/modifies Cron job
                PID:599
                • /tmp/fileWv9Z29
                  /tmp/fuckjewishpeople.x86.elf
                  7⤵
                  • Writes file to system bin folder
                  • Reads runtime system information
                  PID:600
                  • /tmp/file0KiknA
                    /tmp/fuckjewishpeople.x86.elf
                    8⤵
                    • Writes file to system bin folder
                    • Creates/modifies Cron job
                    • Reads runtime system information
                    PID:601
                    • /tmp/filePF0uP5
                      /tmp/fuckjewishpeople.x86.elf
                      9⤵
                      • Creates/modifies Cron job
                      • Writes file to tmp directory
                      PID:602
                      • /tmp/file5z7I8v
                        /tmp/fuckjewishpeople.x86.elf
                        10⤵
                        • Writes file to tmp directory
                        PID:603
                        • /tmp/filevmt924
                          /tmp/fuckjewishpeople.x86.elf
                          11⤵
                          • Reads runtime system information
                          PID:604
                          • /tmp/filedvaFWq
                            /tmp/fuckjewishpeople.x86.elf
                            12⤵
                            • Writes file to system bin folder
                            • Creates/modifies Cron job
                            • Reads runtime system information
                            • Writes file to tmp directory
                            PID:605
                            • /tmp/filedndRp0
                              /tmp/fuckjewishpeople.x86.elf
                              13⤵
                              • Creates/modifies Cron job
                              • Writes file to tmp directory
                              PID:606
                              • /tmp/fileHstxev
                                /tmp/fuckjewishpeople.x86.elf
                                14⤵
                                • Writes file to system bin folder
                                • Creates/modifies Cron job
                                • Reads runtime system information
                                • Writes file to tmp directory
                                PID:607
                                • /tmp/fileHYXkHV
                                  /tmp/fuckjewishpeople.x86.elf
                                  15⤵
                                  • Writes file to system bin folder
                                  • Reads runtime system information
                                  PID:608
                                  • /tmp/fileBABDXx
                                    /tmp/fuckjewishpeople.x86.elf
                                    16⤵
                                    • Creates/modifies Cron job
                                    • Reads runtime system information
                                    PID:609
                                    • /tmp/file5VFb7Y
                                      /tmp/fuckjewishpeople.x86.elf
                                      17⤵
                                      • Writes file to system bin folder
                                      • Creates/modifies Cron job
                                      • Reads runtime system information
                                      PID:610
                                      • /tmp/fileH3iQry
                                        /tmp/fuckjewishpeople.x86.elf
                                        18⤵
                                          PID:611
                                          • /tmp/fileB7A5E0
                                            /tmp/fuckjewishpeople.x86.elf
                                            19⤵
                                            • Writes file to system bin folder
                                            • Writes file to tmp directory
                                            PID:612
                                            • /tmp/fileJhYRBv
                                              /tmp/fuckjewishpeople.x86.elf
                                              20⤵
                                              • Writes file to system bin folder
                                              • Creates/modifies Cron job
                                              PID:613
                                              • /tmp/filefJAS7X
                                                /tmp/fuckjewishpeople.x86.elf
                                                21⤵
                                                • Creates/modifies Cron job
                                                • Writes file to tmp directory
                                                PID:614
                                                • /tmp/filelyEPyx
                                                  /tmp/fuckjewishpeople.x86.elf
                                                  22⤵
                                                  • Creates/modifies Cron job
                                                  • Reads runtime system information
                                                  PID:615
                                                  • /tmp/fileEM4GtZ
                                                    /tmp/fuckjewishpeople.x86.elf
                                                    23⤵
                                                    • Writes file to system bin folder
                                                    • Creates/modifies Cron job
                                                    • Reads runtime system information
                                                    • Writes file to tmp directory
                                                    PID:616
                                                    • /tmp/fileF2NuUx
                                                      /tmp/fuckjewishpeople.x86.elf
                                                      24⤵
                                                      • Writes file to system bin folder
                                                      • Creates/modifies Cron job
                                                      • Reads runtime system information
                                                      • Writes file to tmp directory
                                                      PID:617
                                                      • /tmp/fileI2Q6JX
                                                        /tmp/fuckjewishpeople.x86.elf
                                                        25⤵
                                                        • Creates/modifies Cron job
                                                        • Reads runtime system information
                                                        PID:618
                                                        • /tmp/file14Miex
                                                          /tmp/fuckjewishpeople.x86.elf
                                                          26⤵
                                                          • Writes file to system bin folder
                                                          • Reads runtime system information
                                                          • Writes file to tmp directory
                                                          PID:619
                                                          • /tmp/file7eo6VX
                                                            /tmp/fuckjewishpeople.x86.elf
                                                            27⤵
                                                            • Writes file to system bin folder
                                                            • Creates/modifies Cron job
                                                            PID:620
                                                            • /tmp/fileixtUyx
                                                              /tmp/fuckjewishpeople.x86.elf
                                                              28⤵
                                                              • Writes file to system bin folder
                                                              • Creates/modifies Cron job
                                                              • Reads runtime system information
                                                              • Writes file to tmp directory
                                                              PID:621
                                                              • /tmp/fileAMvtI1
                                                                /tmp/fuckjewishpeople.x86.elf
                                                                29⤵
                                                                • Writes file to system bin folder
                                                                • Reads runtime system information
                                                                PID:622
                                                                • /tmp/fileQu1hoB
                                                                  /tmp/fuckjewishpeople.x86.elf
                                                                  30⤵
                                                                  • Writes file to system bin folder
                                                                  • Creates/modifies Cron job
                                                                  • Reads runtime system information
                                                                  PID:623
                                                                  • /tmp/file48QOL0
                                                                    /tmp/fuckjewishpeople.x86.elf
                                                                    31⤵
                                                                    • Writes file to system bin folder
                                                                    • Writes file to tmp directory
                                                                    PID:624
                                                                    • /tmp/filefVnbnz
                                                                      /tmp/fuckjewishpeople.x86.elf
                                                                      32⤵
                                                                      • Writes file to system bin folder
                                                                      • Creates/modifies Cron job
                                                                      • Reads runtime system information
                                                                      • Writes file to tmp directory
                                                                      PID:625
                                                                      • /tmp/fileTfS8qY
                                                                        /tmp/fuckjewishpeople.x86.elf
                                                                        33⤵
                                                                        • Writes file to system bin folder
                                                                        • Reads runtime system information
                                                                        • Writes file to tmp directory
                                                                        PID:626
                                                                        • /tmp/filemVTSJE
                                                                          /tmp/fuckjewishpeople.x86.elf
                                                                          34⤵
                                                                          • Creates/modifies Cron job
                                                                          • Reads runtime system information
                                                                          PID:627
                                                                          • /tmp/file71OAK4
                                                                            /tmp/fuckjewishpeople.x86.elf
                                                                            35⤵
                                                                            • Creates/modifies Cron job
                                                                            • Reads runtime system information
                                                                            PID:628
                                                                            • /tmp/file2RSDgD
                                                                              /tmp/fuckjewishpeople.x86.elf
                                                                              36⤵
                                                                              • Writes file to system bin folder
                                                                              • Creates/modifies Cron job
                                                                              • Reads runtime system information
                                                                              PID:629
                                                                              • /tmp/fileqrtt72
                                                                                /tmp/fuckjewishpeople.x86.elf
                                                                                37⤵
                                                                                • Writes file to system bin folder
                                                                                • Reads runtime system information
                                                                                PID:630
                                                                                • /tmp/fileJo7AfE
                                                                                  /tmp/fuckjewishpeople.x86.elf
                                                                                  38⤵
                                                                                  • Writes file to system bin folder
                                                                                  • Creates/modifies Cron job
                                                                                  • Reads runtime system information
                                                                                  PID:631
                                                                                  • /tmp/filesTbhPc
                                                                                    /tmp/fuckjewishpeople.x86.elf
                                                                                    39⤵
                                                                                    • Writes file to system bin folder
                                                                                    • Creates/modifies Cron job
                                                                                    PID:632
                                                                                    • /tmp/filekKEU7D
                                                                                      /tmp/fuckjewishpeople.x86.elf
                                                                                      40⤵
                                                                                      • Creates/modifies Cron job
                                                                                      • Reads runtime system information
                                                                                      • Writes file to tmp directory
                                                                                      PID:633
                                                                                      • /tmp/file7PTWTd
                                                                                        /tmp/fuckjewishpeople.x86.elf
                                                                                        41⤵
                                                                                        • Writes file to system bin folder
                                                                                        • Creates/modifies Cron job
                                                                                        • Reads runtime system information
                                                                                        PID:634
                                                                                        • /tmp/file76umRK
                                                                                          /tmp/fuckjewishpeople.x86.elf
                                                                                          42⤵
                                                                                          • Reads runtime system information
                                                                                          • Writes file to tmp directory
                                                                                          PID:635
                                                                                          • /tmp/fileKBmOXe
                                                                                            /tmp/fuckjewishpeople.x86.elf
                                                                                            43⤵
                                                                                            • Writes file to system bin folder
                                                                                            • Creates/modifies Cron job
                                                                                            PID:636
                                                                                            • /tmp/fileAAhppI
                                                                                              /tmp/fuckjewishpeople.x86.elf
                                                                                              44⤵
                                                                                              • Writes file to system bin folder
                                                                                              • Reads runtime system information
                                                                                              • Writes file to tmp directory
                                                                                              PID:637
                                                                                              • /tmp/filepVai2g
                                                                                                /tmp/fuckjewishpeople.x86.elf
                                                                                                45⤵
                                                                                                • Writes file to system bin folder
                                                                                                • Creates/modifies Cron job
                                                                                                • Reads runtime system information
                                                                                                PID:638
                                                                                                • /tmp/fileASywqJ
                                                                                                  /tmp/fuckjewishpeople.x86.elf
                                                                                                  46⤵
                                                                                                  • Writes file to system bin folder
                                                                                                  • Creates/modifies Cron job
                                                                                                  • Reads runtime system information
                                                                                                  • Writes file to tmp directory
                                                                                                  PID:639
                                                                                                  • /tmp/file3yDVye
                                                                                                    /tmp/fuckjewishpeople.x86.elf
                                                                                                    47⤵
                                                                                                    • Writes file to system bin folder
                                                                                                    • Creates/modifies Cron job
                                                                                                    • Reads runtime system information
                                                                                                    • Writes file to tmp directory
                                                                                                    PID:640
                                                                                                    • /tmp/filew5ciGN
                                                                                                      /tmp/fuckjewishpeople.x86.elf
                                                                                                      48⤵
                                                                                                      • Writes file to system bin folder
                                                                                                      • Creates/modifies Cron job
                                                                                                      • Reads runtime system information
                                                                                                      PID:641
                                                                                                      • /tmp/file2Q3dOh
                                                                                                        /tmp/fuckjewishpeople.x86.elf
                                                                                                        49⤵
                                                                                                        • Writes file to system bin folder
                                                                                                        • Reads runtime system information
                                                                                                        PID:642
                                                                                                        • /tmp/fileZUu1sL
                                                                                                          /tmp/fuckjewishpeople.x86.elf
                                                                                                          50⤵
                                                                                                          • Writes file to system bin folder
                                                                                                          • Creates/modifies Cron job
                                                                                                          • Reads runtime system information
                                                                                                          • Writes file to tmp directory
                                                                                                          PID:643
                                                                                                          • /tmp/filenAJOoj
                                                                                                            /tmp/fuckjewishpeople.x86.elf
                                                                                                            51⤵
                                                                                                            • Writes file to system bin folder
                                                                                                            • Creates/modifies Cron job
                                                                                                            • Reads runtime system information
                                                                                                            PID:644
                                                                                                            • /tmp/filePjSAiR
                                                                                                              /tmp/fuckjewishpeople.x86.elf
                                                                                                              52⤵
                                                                                                              • Reads runtime system information
                                                                                                              PID:645
                                                                                                              • /tmp/fileTnDyXp
                                                                                                                /tmp/fuckjewishpeople.x86.elf
                                                                                                                53⤵
                                                                                                                • Writes file to system bin folder
                                                                                                                • Reads runtime system information
                                                                                                                • Writes file to tmp directory
                                                                                                                PID:646
                                                                                                                • /tmp/file6QFECR
                                                                                                                  /tmp/fuckjewishpeople.x86.elf
                                                                                                                  54⤵
                                                                                                                  • Creates/modifies Cron job
                                                                                                                  • Reads runtime system information
                                                                                                                  • Writes file to tmp directory
                                                                                                                  PID:647
                                                                                                                  • /tmp/fileg6fKsp
                                                                                                                    /tmp/fuckjewishpeople.x86.elf
                                                                                                                    55⤵
                                                                                                                    • Writes file to system bin folder
                                                                                                                    • Creates/modifies Cron job
                                                                                                                    • Reads runtime system information
                                                                                                                    • Writes file to tmp directory
                                                                                                                    PID:648
                                                                                                                    • /tmp/fileaxyliW
                                                                                                                      /tmp/fuckjewishpeople.x86.elf
                                                                                                                      56⤵
                                                                                                                      • Creates/modifies Cron job
                                                                                                                      PID:649
                                                                                                                      • /tmp/filempfUEv
                                                                                                                        /tmp/fuckjewishpeople.x86.elf
                                                                                                                        57⤵
                                                                                                                        • Writes file to system bin folder
                                                                                                                        • Creates/modifies Cron job
                                                                                                                        • Writes file to tmp directory
                                                                                                                        PID:650
                                                                                                                        • /tmp/file7lhih6
                                                                                                                          /tmp/fuckjewishpeople.x86.elf
                                                                                                                          58⤵
                                                                                                                          • Writes file to system bin folder
                                                                                                                          • Creates/modifies Cron job
                                                                                                                          • Reads runtime system information
                                                                                                                          • Writes file to tmp directory
                                                                                                                          PID:651
                                                                                                                          • /tmp/fileHbQYEE
                                                                                                                            /tmp/fuckjewishpeople.x86.elf
                                                                                                                            59⤵
                                                                                                                            • Writes file to system bin folder
                                                                                                                            • Creates/modifies Cron job
                                                                                                                            PID:652
                                                                                                                            • /tmp/file9MtHw4
                                                                                                                              /tmp/fuckjewishpeople.x86.elf
                                                                                                                              60⤵
                                                                                                                              • Writes file to system bin folder
                                                                                                                              • Writes file to tmp directory
                                                                                                                              PID:653
                                                                                                                              • /tmp/file3DR5My
                                                                                                                                /tmp/fuckjewishpeople.x86.elf
                                                                                                                                61⤵
                                                                                                                                • Creates/modifies Cron job
                                                                                                                                • Reads runtime system information
                                                                                                                                • Writes file to tmp directory
                                                                                                                                PID:654
                                                                                                                                • /tmp/fileQW02D3
                                                                                                                                  /tmp/fuckjewishpeople.x86.elf
                                                                                                                                  62⤵
                                                                                                                                  • Writes file to system bin folder
                                                                                                                                  • Creates/modifies Cron job
                                                                                                                                  • Reads runtime system information
                                                                                                                                  PID:655
                                                                                                                                  • /tmp/fileCGxWPC
                                                                                                                                    /tmp/fuckjewishpeople.x86.elf
                                                                                                                                    63⤵
                                                                                                                                    • Writes file to system bin folder
                                                                                                                                    • Creates/modifies Cron job
                                                                                                                                    • Reads runtime system information
                                                                                                                                    PID:656
                                                                                                                                    • /tmp/fileKU4bP8
                                                                                                                                      /tmp/fuckjewishpeople.x86.elf
                                                                                                                                      64⤵
                                                                                                                                      • Writes file to system bin folder
                                                                                                                                      • Creates/modifies Cron job
                                                                                                                                      • Reads runtime system information
                                                                                                                                      PID:657
                                                                                                                                      • /tmp/fileXVhCSG
                                                                                                                                        /tmp/fuckjewishpeople.x86.elf
                                                                                                                                        65⤵
                                                                                                                                        • Writes file to system bin folder
                                                                                                                                        • Creates/modifies Cron job
                                                                                                                                        • Reads runtime system information
                                                                                                                                        • Writes file to tmp directory
                                                                                                                                        PID:658
                                                                                                                                        • /tmp/fileBOQk4e
                                                                                                                                          /tmp/fuckjewishpeople.x86.elf
                                                                                                                                          66⤵
                                                                                                                                          • Reads runtime system information
                                                                                                                                          • Writes file to tmp directory
                                                                                                                                          PID:659
                                                                                                                                          • /tmp/filey2Y2GQ
                                                                                                                                            /tmp/fuckjewishpeople.x86.elf
                                                                                                                                            67⤵
                                                                                                                                            • Writes file to system bin folder
                                                                                                                                            • Creates/modifies Cron job
                                                                                                                                            • Reads runtime system information
                                                                                                                                            • Writes file to tmp directory
                                                                                                                                            PID:660
                                                                                                                                            • /tmp/file6RAJnk
                                                                                                                                              /tmp/fuckjewishpeople.x86.elf
                                                                                                                                              68⤵
                                                                                                                                              • Writes file to system bin folder
                                                                                                                                              • Creates/modifies Cron job
                                                                                                                                              • Writes file to tmp directory
                                                                                                                                              PID:661
                                                                                                                                              • /tmp/filergWqvS
                                                                                                                                                /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                69⤵
                                                                                                                                                • Creates/modifies Cron job
                                                                                                                                                • Writes file to tmp directory
                                                                                                                                                PID:662
                                                                                                                                                • /tmp/filels4o8p
                                                                                                                                                  /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                  70⤵
                                                                                                                                                  • Creates/modifies Cron job
                                                                                                                                                  PID:663
                                                                                                                                                  • /tmp/fileLJAEgY
                                                                                                                                                    /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                    71⤵
                                                                                                                                                    • Writes file to system bin folder
                                                                                                                                                    • Reads runtime system information
                                                                                                                                                    • Writes file to tmp directory
                                                                                                                                                    PID:664
                                                                                                                                                    • /tmp/filegfS2Un
                                                                                                                                                      /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                      72⤵
                                                                                                                                                      • Writes file to system bin folder
                                                                                                                                                      • Creates/modifies Cron job
                                                                                                                                                      • Writes file to tmp directory
                                                                                                                                                      PID:665
                                                                                                                                                      • /tmp/file1RsvqW
                                                                                                                                                        /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                        73⤵
                                                                                                                                                        • Writes file to system bin folder
                                                                                                                                                        • Reads runtime system information
                                                                                                                                                        PID:666
                                                                                                                                                        • /tmp/fileChGOcl
                                                                                                                                                          /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                          74⤵
                                                                                                                                                          • Writes file to system bin folder
                                                                                                                                                          • Creates/modifies Cron job
                                                                                                                                                          • Reads runtime system information
                                                                                                                                                          • Writes file to tmp directory
                                                                                                                                                          PID:667
                                                                                                                                                          • /tmp/filePTtE9S
                                                                                                                                                            /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                            75⤵
                                                                                                                                                            • Writes file to system bin folder
                                                                                                                                                            • Creates/modifies Cron job
                                                                                                                                                            PID:668
                                                                                                                                                            • /tmp/fileQlErJl
                                                                                                                                                              /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                              76⤵
                                                                                                                                                              • Writes file to system bin folder
                                                                                                                                                              • Creates/modifies Cron job
                                                                                                                                                              • Reads runtime system information
                                                                                                                                                              • Writes file to tmp directory
                                                                                                                                                              PID:669
                                                                                                                                                              • /tmp/fileL6NWjU
                                                                                                                                                                /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                                77⤵
                                                                                                                                                                • Writes file to system bin folder
                                                                                                                                                                • Writes file to tmp directory
                                                                                                                                                                PID:670
                                                                                                                                                                • /tmp/fileapYKxp
                                                                                                                                                                  /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                                  78⤵
                                                                                                                                                                  • Creates/modifies Cron job
                                                                                                                                                                  • Writes file to tmp directory
                                                                                                                                                                  PID:671
                                                                                                                                                                  • /tmp/filey2lkRX
                                                                                                                                                                    /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                                    79⤵
                                                                                                                                                                    • Writes file to system bin folder
                                                                                                                                                                    • Reads runtime system information
                                                                                                                                                                    PID:672
                                                                                                                                                                    • /tmp/filemq0wFq
                                                                                                                                                                      /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                                      80⤵
                                                                                                                                                                      • Creates/modifies Cron job
                                                                                                                                                                      • Reads runtime system information
                                                                                                                                                                      • Writes file to tmp directory
                                                                                                                                                                      PID:673
                                                                                                                                                                      • /tmp/fileonhvXY
                                                                                                                                                                        /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                                        81⤵
                                                                                                                                                                        • Writes file to system bin folder
                                                                                                                                                                        • Creates/modifies Cron job
                                                                                                                                                                        • Reads runtime system information
                                                                                                                                                                        • Writes file to tmp directory
                                                                                                                                                                        PID:674
                                                                                                                                                                        • /tmp/fileqcwLFt
                                                                                                                                                                          /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                                          82⤵
                                                                                                                                                                          • Writes file to system bin folder
                                                                                                                                                                          • Creates/modifies Cron job
                                                                                                                                                                          • Reads runtime system information
                                                                                                                                                                          PID:675
                                                                                                                                                                          • /tmp/fileQ7OgX2
                                                                                                                                                                            /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                                            83⤵
                                                                                                                                                                            • Creates/modifies Cron job
                                                                                                                                                                            • Reads runtime system information
                                                                                                                                                                            PID:676
                                                                                                                                                                            • /tmp/fileHBOQYx
                                                                                                                                                                              /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                                              84⤵
                                                                                                                                                                              • Creates/modifies Cron job
                                                                                                                                                                              • Reads runtime system information
                                                                                                                                                                              • Writes file to tmp directory
                                                                                                                                                                              PID:677
                                                                                                                                                                              • /tmp/fileFtdWl6
                                                                                                                                                                                /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                                                85⤵
                                                                                                                                                                                • Writes file to system bin folder
                                                                                                                                                                                • Creates/modifies Cron job
                                                                                                                                                                                • Reads runtime system information
                                                                                                                                                                                PID:678
                                                                                                                                                                                • /tmp/file08LGby
                                                                                                                                                                                  /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                                                  86⤵
                                                                                                                                                                                  • Writes file to system bin folder
                                                                                                                                                                                  • Creates/modifies Cron job
                                                                                                                                                                                  • Reads runtime system information
                                                                                                                                                                                  • Writes file to tmp directory
                                                                                                                                                                                  PID:679
                                                                                                                                                                                  • /tmp/filexi56z7
                                                                                                                                                                                    /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                                                    87⤵
                                                                                                                                                                                    • Writes file to system bin folder
                                                                                                                                                                                    • Creates/modifies Cron job
                                                                                                                                                                                    • Reads runtime system information
                                                                                                                                                                                    • Writes file to tmp directory
                                                                                                                                                                                    PID:680
                                                                                                                                                                                    • /tmp/file7AheVA
                                                                                                                                                                                      /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                                                      88⤵
                                                                                                                                                                                      • Writes file to system bin folder
                                                                                                                                                                                      • Creates/modifies Cron job
                                                                                                                                                                                      • Reads runtime system information
                                                                                                                                                                                      • Writes file to tmp directory
                                                                                                                                                                                      PID:681
                                                                                                                                                                                      • /tmp/filewmt528
                                                                                                                                                                                        /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                                                        89⤵
                                                                                                                                                                                        • Writes file to system bin folder
                                                                                                                                                                                        • Creates/modifies Cron job
                                                                                                                                                                                        • Reads runtime system information
                                                                                                                                                                                        PID:682
                                                                                                                                                                                        • /tmp/filesbFRHH
                                                                                                                                                                                          /tmp/fuckjewishpeople.x86.elf
                                                                                                                                                                                          90⤵
                                                                                                                                                                                          • Reads runtime system information
                                                                                                                                                                                          PID:683

      Network

      MITRE ATT&CK Matrix ATT&CK v6

      Initial Access

      Execution

      Scheduled Task

      1
      T1053

      Persistence

      Hijack Execution Flow

      1
      T1574

      Scheduled Task

      1
      T1053

      Privilege Escalation

      Hijack Execution Flow

      1
      T1574

      Scheduled Task

      1
      T1053

      Defense Evasion

      Hijack Execution Flow

      1
      T1574

      Credential Access

      Discovery

      Lateral Movement

      Collection

      Exfiltration

      Command and Control

      Impact

      Replay Monitor

      Loading Replay Monitor...

      Downloads