2a6fdd629ffd0184c84666beb01d82817cc532efb191746a3ef60da792d38e25

Analysis

max time kernel
60s
max time network
74s
platform
ubuntu-18.04_amd64
resource
ubuntu1804-amd64-20240226-en
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-20240226-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
27/02/2024, 17:37

Target

rdscanner
Size

6.7MB
MD5

ccf5a7586512c59f77f0203f061ad8d5
SHA1

9d230f28f15e8b974e2cb3287261b46285a45075
SHA256

2a6fdd629ffd0184c84666beb01d82817cc532efb191746a3ef60da792d38e25
SHA512

1edbd578bf6724340f8bc1d19fe6c351b18c95d2597c14c45916beb5c6091f1ad8e188e3d924babed382cb9ebb6d4df5b394eacf419e81339df03e4fcfe6baed
SSDEEP

49152:lJjJ46v247BlFTbpKcZ+GNyea+8Hf1/Ow8huh61Yz6T43K57l/wg1rh3lTl6S1+0:lJJ4W/FTaOphqz643K5Jprh36/

Score

3^/10

Enumerates kernel/hardware configuration 1 TTPs 1 IoCs

Reads contents of /sys virtual filesystem to enumerate system information.

System Information Discovery

description	ioc	Process
File opened for reading	/sys/kernel/mm/transparent_hugepage/hpage_pmd_size	rdscanner

/tmp/rdscanner
/tmp/rdscanner
1⤵
- Enumerates kernel/hardware configuration
PID:1559

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact