Overview

overview

10

Static

static

10

06585ffdc9...9d7d63

ubuntu-18.04-amd64

7

Analysis

  • max time kernel
    154s
  • max time network
    159s
  • platform
    ubuntu-18.04_amd64
  • resource
    ubuntu1804-amd64-20231215-en
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-20231215-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    19-12-2023 22:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    06585ffdc9df60cdd849c3151e9d7d63

  • Size

    123KB

  • MD5

    06585ffdc9df60cdd849c3151e9d7d63

  • SHA1

    ba9870abb0dfbd73d8eca28c284615d36f9e605c

  • SHA256

    822cfcd5651a66422f9e52ecba6dd02e83cc65b8bf31c49f451c2936e638994e

  • SHA512

    120a820224ca3498d15aae63da92b9b0ff75c5575e724cad92c823867a560f8b8869231e204fefd4ab8d79c01dc73ad4973dc498267ac07f78c8724de22478fb

  • SSDEEP

    3072:U1g4GjebR3ARqVRU4WEO6XAyXbnhuA2q+lC7SdVnhGHSp5O:at0uRWVXS0FlC7SdVnhGHSp5O

Score
7/10

Malware Config

Signatures

  • Changes its process name 1 IoCs
  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

Processes

  • /tmp/06585ffdc9df60cdd849c3151e9d7d63
    /tmp/06585ffdc9df60cdd849c3151e9d7d63
    1⤵
    • Changes its process name
    • Reads system routing table
    • Reads system network configuration
    PID:1537

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads