Overview

overview

10

Static

static

10

5e85ac2809...8799da

ubuntu-18.04-amd64

7

Analysis

  • max time kernel
    124s
  • max time network
    144s
  • platform
    ubuntu-18.04_amd64
  • resource
    ubuntu1804-amd64-20231215-en
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-20231215-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    19/12/2023, 23:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5e85ac2809d4357b4431b35dbd8799da

  • Size

    137KB

  • MD5

    5e85ac2809d4357b4431b35dbd8799da

  • SHA1

    89ba98be4341bb36eaa3e91db5e64a8e1dc46df4

  • SHA256

    77bc4c548727b977ba8f9e035cbe2477964d272b18b404fee1cc60ca8136d31e

  • SHA512

    e7cec74cd3124b2e126a0be81cb1d143dbc05e32a6efcaefafe395afec50fd9a9c93fe901d10236ca07c57295d93ee9bc5dab5c280353143de1ffbb15cac57f7

  • SSDEEP

    3072:X1gmMiuGDj8LfyynePXxxtrQECutJ8adPF4KQTjsh/rN6eb+fcivGmS+kk:pOdUXPt0utJ8adPF4f6rN6eb+fci+mSE

Score
7/10

Malware Config

Signatures

  • Changes its process name 1 IoCs
  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

Processes

  • /tmp/5e85ac2809d4357b4431b35dbd8799da
    /tmp/5e85ac2809d4357b4431b35dbd8799da
    1⤵
    • Changes its process name
    • Reads system routing table
    • Reads system network configuration
    PID:1540

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads