General
-
Target
3d375d0ead2b63168de86ca2649360d9dcff75b3e0ffa2cf1e50816ec92b3b7d.zip
-
Size
32KB
-
Sample
230503-r62g3sgh5z
-
MD5
4c3810f1d764a6f7335acef308d6520a
-
SHA1
8efd6494fcdd309397471226c3825f19e1320de9
-
SHA256
1204391f97b3ca1145b15689fe2185ac4b7aaee7c7108072f00b2efa42638174
-
SHA512
5f71ffa3ed325bbb2515b635ab482c8705786edce6a12b54213634e29ffdb363d410ea011d0385e9bc07ae749d3a751323377e5b59ead5f9ee67b7b7ea5dea62
-
SSDEEP
768:Vbi+X4WS76fziGIHQc1uQSTo3+QFvir7UuoGiM9Ntid:pHXJAsBIHH+0Kr7Tom9Ng
Behavioral task
behavioral1
Sample
3d375d0ead2b63168de86ca2649360d9dcff75b3e0ffa2cf1e50816ec92b3b7d.elf
Resource
ubuntu1804-amd64-20221111-en
Malware Config
Extracted
/tmp/.Test-unix/qoxaq-readme.txt
http://aplebzu47wgazapdqks6vrcv6zcnjppkbxbr6wketf56nf6aq2nmyoyd.onion/604D4AF1604D4AF1
http://decoder.re/604D4AF1604D4AF1
Targets
-
-
Target
3d375d0ead2b63168de86ca2649360d9dcff75b3e0ffa2cf1e50816ec92b3b7d.elf
-
Size
102KB
-
MD5
96a157e4c0bef22e0cea1299f88d4745
-
SHA1
446771415864f4916df33aad1aa7e42fa104adee
-
SHA256
3d375d0ead2b63168de86ca2649360d9dcff75b3e0ffa2cf1e50816ec92b3b7d
-
SHA512
697071bac6f86ea1b0421306dbc87e926973f061b8eff4608f9a98ada622fe2bdcd45a180591792dd14de54a0b87301ae02f0a3a222e93eb412b340ccc990377
-
SSDEEP
3072:Gb+XoBHJ3RYjgggwgggwgggwgggwgggZQuYoL/:GDaoL
Score10/10-
Reads CPU attributes
-
Reads runtime system information
Reads data from /proc virtual filesystem.
-
Writes file to tmp directory
Malware often drops required files in the /tmp directory.
-