Overview

overview

10

Static

static

10

5d9cc7bfc0...3affc0

ubuntu-18.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    152s
  • platform
    ubuntu-18.04_amd64
  • resource
    ubuntu1804-amd64-20231215-en
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-20231215-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    19-12-2023 23:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5d9cc7bfc09cc427610607c47f3affc0

  • Size

    171KB

  • MD5

    5d9cc7bfc09cc427610607c47f3affc0

  • SHA1

    fa7b934069767d8a5973461f9d2c778723fbcdbf

  • SHA256

    17b5b3b84d535023f845c273e48b6a2088ac0d1ed099fd8e4244007f9b90f0f0

  • SHA512

    dbb73e83f696cae3a83d5c6b193b93e52f4377a5e6a748e408a94f2c67152d53939db4f750e96ba805bd7df65afb3c45f8af98e6417310aa4977a39c598abc08

  • SSDEEP

    3072:6D2nR8chKhMScJqCKBqoE45zM5NCUXA9BlbZ9aC6rpqPQmPOLVPU8oJDHX:F54q8w45z+AlTyrpklPOLVPU8oJDHX

Score
7/10

Malware Config

Signatures

  • Changes its process name 1 IoCs
  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

Processes

  • /tmp/5d9cc7bfc09cc427610607c47f3affc0
    /tmp/5d9cc7bfc09cc427610607c47f3affc0
    1⤵
    • Changes its process name
    • Reads system routing table
    • Reads system network configuration
    PID:1532

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads