Overview

overview

10

Static

static

10

d578fbefb0...17.elf

ubuntu-20.04-amd64

7

Analysis

  • max time kernel
    104s
  • max time network
    133s
  • platform
    ubuntu-20.04_amd64
  • resource
    ubuntu2004-amd64-20240221-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2004-amd64-20240221-enkernel:5.4.0-169-genericlocale:en-usos:ubuntu-20.04-amd64system
  • submitted
    29-03-2024 08:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d578fbefb02164f9d58690a223423917.elf

  • Size

    102KB

  • MD5

    d578fbefb02164f9d58690a223423917

  • SHA1

    dc59a411105419c42162f815e3e2ad3cf056a40e

  • SHA256

    f38f46f448b43194170326bfbcc21ea13ec468a09c078c03e82a584143b0092a

  • SHA512

    4e9049fd6a109ed7568532f2a7e0659f43e4c682c2c27d114be92bd22c043fdde9ef498a6180db9929e5ba4f41533a83351966dd337e0bb66542f39838318d40

  • SSDEEP

    3072:H15SohIECvPJqiIMbXR8ePLicWmPezXdKCYdoq:VxUUPMbXR8aLicWmPezXdKRdoq

Score
7/10

Malware Config

Signatures

  • Changes its process name 1 IoCs
  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

Processes

  • /tmp/d578fbefb02164f9d58690a223423917.elf
    /tmp/d578fbefb02164f9d58690a223423917.elf
    1⤵
    • Changes its process name
    • Reads system routing table
    • Reads system network configuration
    PID:1469

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads