Overview

overview

7

Static

static

1

360ff599c3...fcdac7

ubuntu-18.04-amd64

7

Analysis

  • max time kernel
    154s
  • max time network
    157s
  • platform
    ubuntu-18.04_amd64
  • resource
    ubuntu1804-amd64-20231215-en
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-20231215-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    19-12-2023 22:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    360ff599c3bc8624192974c603fcdac7

  • Size

    73KB

  • MD5

    360ff599c3bc8624192974c603fcdac7

  • SHA1

    cd6c9b7f3fec61067bb5a6cd41640c517265f5d2

  • SHA256

    e386bae63ebe322f5f9933ca925a5624a87fb2caae27a7f634ff692b77dfd059

  • SHA512

    1dad54d0fba062f1a6fde6e9e2058cb49575ed3219db863d118389e2b33b87dee75f42eda53b4eb880d03c55158df41a0cb41fce502ea67ca76742c248043fb5

  • SSDEEP

    1536:xyq93lguLYiPvoVjRWSbXJ0rWlC/kPstVkYFfWw23fQW83LZ5:p3KwYiPvoVjRWSbLQ/kPstVkrw2IN

Score
7/10

Malware Config

Signatures

  • Changes its process name 1 IoCs
  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

Processes

  • /tmp/360ff599c3bc8624192974c603fcdac7
    /tmp/360ff599c3bc8624192974c603fcdac7
    1⤵
    • Changes its process name
    • Reads system routing table
    • Reads system network configuration
    PID:1532

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads