418b34fe8f70f8449742f56607d810bc1d011b9ab4d32f3c2999334d7ddfe2b4

Analysis

max time kernel
3s
max time network
134s
platform
ubuntu-18.04_amd64
resource
ubuntu1804-amd64-20231215-en
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-20231215-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
26-12-2023 07:03

Target

Malware-master/Linux/ELF/m1
Size

1.3MB
MD5

1d43757909e395914f375d85a1990055
SHA1

1e8290da0b6ae499d93176bdebd09a7970b4f3c0
SHA256

de33d79d136e3c7a32fb58ae2fcc02c80e4bcaaba9a512891658721a358b506a
SHA512

cdc5151e502751cd2c26700d774c01e32e29c9ca5e54e77393472e282f17dc5d97fce632eed14a96afe4ce52f329f34c0aa4a3b31b14d532605e3d891dd4f9f6
SSDEEP

24576:/JQo0RvQdAYL/fcYoI3g5Dhi+FCSMjFto1MIXjZNKHDelvNLGwH6Xn964hv5CI8t:KRGfjfC+SMjdjOGHZawGmUfj

Score

6^/10

antivm

Checks CPU configuration 1 TTPs 1 IoCs
Checks CPU information which indicate if the system is a virtual machine.
antivm

Virtualization/Sandbox Evasion
T1497

Processes:

m1

description ioc process

File opened for reading /proc/cpuinfo m1

description	ioc	process
File opened for reading	/proc/cpuinfo	m1

/tmp/Malware-master/Linux/ELF/m1
/tmp/Malware-master/Linux/ELF/m1
1⤵
- Checks CPU configuration
PID:1533

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance