07ecb1f2d9ffbd20a46cd36cd06b022db3cc8e45b1ecab62cd11f9ca7a26ab6d

Analysis

max time kernel
0s
max time network
131s
platform
ubuntu-20.04_amd64
resource
ubuntu2004-amd64-20240221-en
resource tags

arch:amd64arch:i386image:ubuntu2004-amd64-20240221-enkernel:5.4.0-169-genericlocale:en-usos:ubuntu-20.04-amd64system
submitted
10-04-2024 09:27

Target

07ecb1f2d9ffbd20a46cd36cd06b022db3cc8e45b1ecab62cd11f9ca7a26ab6d
Size

22KB
MD5

83023ecfc4836df0a25eec8826cbb80c
SHA1

46cc04585e4fd8181470c7f0359d7b18a52211dc
SHA256

07ecb1f2d9ffbd20a46cd36cd06b022db3cc8e45b1ecab62cd11f9ca7a26ab6d
SHA512

d5b11c5b0b9bace8544f43e5308aff5cd14be135316662edb56f0888de5cbd0358e1f6bf883c72bb38393348d13d7258ba50f0eb3b7d6f69f8a98b1a800e2318
SSDEEP

384:6N9kVIGS8d5yAna5Nhk9K2yVHSo0wyktXUuMYSYUa2:4ayGS8zm5NK9K2yoctXU18Q

Score

7^/10

Changes its process name 1 IoCs

Processes:

07ecb1f2d9ffbd20a46cd36cd06b022db3cc8e45b1ecab62cd11f9ca7a26ab6d

description	ioc	pid	process
Changes the process name, possibly in an attempt to hide itself	/usr/lib/systemd/systemd-journald	1463	07ecb1f2d9ffbd20a46cd36cd06b022db3cc8e45b1ecab62cd11f9ca7a26ab6d

Creates Raw socket 1 IoCs
Creates a socket that captures raw packets at the device level

Processes:

pid

1464

pid
1464

/tmp/07ecb1f2d9ffbd20a46cd36cd06b022db3cc8e45b1ecab62cd11f9ca7a26ab6d
/tmp/07ecb1f2d9ffbd20a46cd36cd06b022db3cc8e45b1ecab62cd11f9ca7a26ab6d
1⤵
- Changes its process name
PID:1463