Overview

overview

6

Static

static

1

.python/allb

ubuntu-18.04-amd64

1

.python/allb

debian-9-armhf

6

.python/allb

debian-9-mips

6

.python/allb

debian-9-mipsel

6

.python/c

ubuntu-18.04-amd64

1

.python/oracle

ubuntu-18.04-amd64

1

.python/oracle

debian-9-armhf

1

.python/oracle

debian-9-mips

1

.python/oracle

debian-9-mipsel

1

.python/postgres

ubuntu-18.04-amd64

1

.python/postgres

debian-9-armhf

1

.python/postgres

debian-9-mips

1

.python/postgres

debian-9-mipsel

1

.python/prg

ubuntu-18.04-amd64

1

.python/prg

debian-9-armhf

1

.python/prg

debian-9-mips

1

.python/prg

debian-9-mipsel

1

.python/pscan

ubuntu-18.04-amd64

1

.python/rand

ubuntu-18.04-amd64

1

.python/rand

debian-9-armhf

1

.python/rand

debian-9-mips

1

.python/rand

debian-9-mipsel

1

.python/test

ubuntu-18.04-amd64

1

.python/test

debian-9-armhf

1

.python/test

debian-9-mips

1

.python/test

debian-9-mipsel

1

.python/ubuntu

ubuntu-18.04-amd64

1

.python/ubuntu

debian-9-armhf

1

.python/ubuntu

debian-9-mips

1

.python/ubuntu

debian-9-mipsel

1

Analysis

  • max time kernel
    13s
  • max time network
    132s
  • platform
    ubuntu-18.04_amd64
  • resource
    ubuntu1804-amd64-20231215-en
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-20231215-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    22-12-2023 02:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    .python/allb

  • Size

    1KB

  • MD5

    d8562d823f1531477aed56051c3e616a

  • SHA1

    e5ddd1abb83d031082d713f3b7c8ecb3e19a53d0

  • SHA256

    c96a2a632b23eb6849a539202f995431e9fd5def6cf9a5998419192e2ffb4671

  • SHA512

    ad4b1108d0ff324ec74456ab4d84bfe4cdd2759808ef8fb92a446ace3c1d19956e95b2f8a0896824c13b6c662413dcf0ddb0ca6e333d4366a708f76cb4c87da0

Score
1/10

Malware Config

Signatures

Processes

  • /tmp/.python/allb
    /tmp/.python/allb
    1⤵
      PID:1537
      • /tmp/.python/c
        ./c 22 -b -i vmbr0 -s 10
        2⤵
          PID:1538
        • /bin/sleep
          sleep 2
          2⤵
            PID:1539
          • /tmp/.python/prg
            ./prg -I bios.txt -U user.txt -L pass.txt -o vuln.txt
            2⤵
              PID:1544
            • /bin/sleep
              sleep 5
              2⤵
                PID:1545
              • /bin/rm
                rm -rf bios.txt
                2⤵
                  PID:1556
                • /bin/sleep
                  sleep 1
                  2⤵
                    PID:1557
                  • /bin/cat
                    cat vuln.txt
                    2⤵
                      PID:1558
                    • /bin/cat
                      cat vuln.txt
                      2⤵
                        PID:1559

                    Network

                    MITRE ATT&CK Matrix

                    Replay Monitor

                    Loading Replay Monitor...

                    Downloads