Analysis
-
max time kernel
0s -
max time network
134s -
platform
ubuntu-18.04_amd64 -
resource
ubuntu1804-amd64-20221111-en -
resource tags
-
submitted
23-03-2023 07:47
General
-
Target
2c2f3ede7a522ee1e49c6c50dee8d129.elf
-
Size
102KB
-
MD5
2c2f3ede7a522ee1e49c6c50dee8d129
-
SHA1
a564cb8b453419f8b40f514d2ec132744dd6bc81
-
SHA256
b17e1c68fbed576899049f287797b3ea2d65c1261af77fae296dee3e8a9b7cc1
-
SHA512
dd85b9044cb32ea997f657280ea83cf6472a92e8140c9a4b0f9a094a394241f3c62d73315bfea03a222ae991752b23530778f26f691d2a6f7cdc52295ed10c0b
-
SSDEEP
3072:KVfYvEXjXz/ChD1kZHZfphas1Yg9luJXuFJZiqX:gXf/C7uphasOg9luJXuFJZiqX
Score
7/10
Malware Config
Signatures
-
Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.
-
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.
Processes
-
/tmp/2c2f3ede7a522ee1e49c6c50dee8d129.elf/tmp/2c2f3ede7a522ee1e49c6c50dee8d129.elf1⤵
- Reads system routing table
- Reads system network configuration