3b1c158f96488addd0b2a1d769c1232b5c372b817708652fa6349b3488a8e3a0 | Triage

Analysis

max time kernel
5s
max time network
9s
platform
ubuntu-18.04_amd64
resource
ubuntu1804-amd64-20231215-en
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-20231215-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
19/12/2023, 22:54 UTC

Sharing

Reason

Payload did not run: payload error: fork/exec /tmp/32d05c2c2e33895fb5ce5528314c6a65: exec format error

Report Analysis Logs

General

Target

32d05c2c2e33895fb5ce5528314c6a65
Size

76KB
MD5

32d05c2c2e33895fb5ce5528314c6a65
SHA1

53b50eb72b374a794f3e429e8ac942c3b4e6cebc
SHA256

3b1c158f96488addd0b2a1d769c1232b5c372b817708652fa6349b3488a8e3a0
SHA512

a4e0152bf123dd83a078663815dc81a2f9f30986a3ce553f19fe0096fa4219974188cc7577fc0e0589133b15a3638cba0102ee366ce1c857985bd921569e1482
SSDEEP

1536:Fll8zYT5E9et2+KfhhGYq6CjjeRClL+mPO0VPYLDzf60X:zlAYT5cnfi60gmG0VPYvzf60X

Score

1^/10

Malware Config

Signatures

/tmp/32d05c2c2e33895fb5ce5528314c6a65
/tmp/32d05c2c2e33895fb5ce5528314c6a65
1⤵
PID:1537

Network

DNS

cdn.fwupd.org

Remote address:

1.1.1.1:53

Request

cdn.fwupd.org

IN A

Response

cdn.fwupd.org

IN CNAME

dualstack.p2.shared.global.fastly.net

dualstack.p2.shared.global.fastly.net

IN A

151.101.2.49

dualstack.p2.shared.global.fastly.net

IN A

151.101.66.49

dualstack.p2.shared.global.fastly.net

IN A

151.101.130.49

dualstack.p2.shared.global.fastly.net

IN A

151.101.194.49
DNS

cdn.fwupd.org

Remote address:

1.1.1.1:53

Request

cdn.fwupd.org

IN AAAA

Response

cdn.fwupd.org

IN CNAME

dualstack.p2.shared.global.fastly.net

dualstack.p2.shared.global.fastly.net

IN AAAA

2a04:4e42::561

dualstack.p2.shared.global.fastly.net

IN AAAA

2a04:4e42:200::561

dualstack.p2.shared.global.fastly.net

IN AAAA

2a04:4e42:400::561

dualstack.p2.shared.global.fastly.net

IN AAAA

2a04:4e42:600::561

151.101.66.49:443

tls

127 B
40 B
2
1
151.101.194.49:443

cdn.fwupd.org

tls

10.7kB
1.0MB
191
761
151.101.193.91:443

tls

127 B
40 B
2
1
89.187.167.3:443

tls

353 B
5
185.125.188.61:443

tls

135 B
2
185.125.188.62:443

tls

135 B
2
151.101.193.91:443

100 B
64 B
2
1

224.0.0.251:5353

73 B
1
1.1.1.1:53

cdn.fwupd.org

dns

70 B
185 B
1
1

DNS Request

cdn.fwupd.org

DNS Response

151.101.2.49

151.101.66.49

151.101.130.49

151.101.194.49
1.1.1.1:53

cdn.fwupd.org

dns

70 B
233 B
1
1

DNS Request

cdn.fwupd.org

DNS Response

2a04:4e42::561

2a04:4e42:200::561

2a04:4e42:400::561

2a04:4e42:600::561

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads