Overview

overview

4

Static

static

1

.SIGN.RSA....sa.pub

windows7-x64

4

.SIGN.RSA....sa.pub

windows10-2004-x64

3

usr/bin/geany

ubuntu-18.04-amd64

usr/bin/geany

debian-9-armhf

usr/bin/geany

debian-9-mips

usr/bin/geany

debian-9-mipsel

usr/lib/ge...der.so

ubuntu-18.04-amd64

usr/lib/ge...der.so

debian-9-armhf

usr/lib/ge...der.so

debian-9-mips

usr/lib/ge...der.so

debian-9-mipsel

usr/lib/ge...ort.so

ubuntu-18.04-amd64

usr/lib/ge...ort.so

debian-9-armhf

usr/lib/ge...ort.so

debian-9-mips

usr/lib/ge...ort.so

debian-9-mipsel

usr/lib/ge...ser.so

ubuntu-18.04-amd64

usr/lib/ge...ser.so

debian-9-armhf

usr/lib/ge...ser.so

debian-9-mips

usr/lib/ge...ser.so

debian-9-mipsel

usr/lib/ge...ars.so

ubuntu-18.04-amd64

usr/lib/ge...ars.so

debian-9-armhf

usr/lib/ge...ars.so

debian-9-mips

usr/lib/ge...ars.so

debian-9-mipsel

usr/lib/ge...ons.so

ubuntu-18.04-amd64

usr/lib/ge...ons.so

debian-9-armhf

usr/lib/ge...ons.so

debian-9-mips

usr/lib/ge...ons.so

debian-9-mipsel

usr/lib/ge...dow.so

ubuntu-18.04-amd64

usr/lib/ge...dow.so

debian-9-armhf

usr/lib/ge...dow.so

debian-9-mips

usr/lib/ge...dow.so

debian-9-mipsel

Analysis

  • max time kernel
    3s
  • platform
    ubuntu-18.04_amd64
  • resource
    ubuntu1804-amd64-20230831-en
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-20230831-enkernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    07/10/2023, 23:52

Sharing

Copy URL
Twitter E-mail

Errors

Reason
Payload did not run: Failed to set clock: Failed to set time: Automatic time synchronization is enabled payload error: fork/exec /tmp/usr/lib/geany/classbuilder.so: exec format error
Report Analysis Logs

General

  • Target

    usr/lib/geany/classbuilder.so

  • Size

    25KB

  • MD5

    1b02263ad3e0b89f455612f92e15f0cd

  • SHA1

    03852a489cc26d037f4a66a376060f15aa955903

  • SHA256

    cee5e9b7a91a514d0cfbdaf5f26fe3f0c716a8252ec2a3f2546cc0c9f56cf5ca

  • SHA512

    cfaf81c619faf0e706c6edb7c3b71c25ef94fc06d2cc2d1eb27bba8ba27e2947ef4d28842ccb0aeb38cab32e3df7976323a98abb4093f89c25625ed0d332d6dd

  • SSDEEP

    384:CXxVz1wTXKFXmYq+95An65uyywLKKe8hSwSJDsZ86hkSsS7vLScS28POwSmdOW:CnClmAnNuKKe8N86AO

Score
1/10

Malware Config

Signatures

Processes

  • /tmp/usr/lib/geany/classbuilder.so
    /tmp/usr/lib/geany/classbuilder.so
    1⤵
      PID:614

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads