Overview

overview

10

Static

static

10

6493b9559f...64aaab

ubuntu-18.04-amd64

7

Analysis

  • max time kernel
    135s
  • max time network
    139s
  • platform
    ubuntu-18.04_amd64
  • resource
    ubuntu1804-amd64-20231215-en
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-20231215-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    19-12-2023 23:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6493b9559f5f48d8ae3b6a472664aaab

  • Size

    122KB

  • MD5

    6493b9559f5f48d8ae3b6a472664aaab

  • SHA1

    329b6b202808b9496e15006451b54d1edc6a19a2

  • SHA256

    024039043a51be6ea258fb8b77a943871b0681b3727b9855b1a894350db87014

  • SHA512

    5e03e74e8c52252d17c0ed36870f8922dbe74b4be85d5f4f2cb5e8e1702bef907af485d523b952ef4af632c5c8a72bf8ba365544e781418219c47009dbc21d35

  • SSDEEP

    3072:F6RiwWjJZq3uDXThmketJ8add9QzTs3Qzmg4mKcXeGcgqqK:F6cTjhmketJ8addQhmg4mKcXdcgqqK

Score
7/10

Malware Config

Signatures

  • Changes its process name 1 IoCs
  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

Processes

  • /tmp/6493b9559f5f48d8ae3b6a472664aaab
    /tmp/6493b9559f5f48d8ae3b6a472664aaab
    1⤵
    • Changes its process name
    • Reads system routing table
    • Reads system network configuration
    PID:1513

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads