Overview

overview

10

Static

static

7

.rsync/a/a

ubuntu-20.04-amd64

10

.rsync/a/init0

ubuntu-20.04-amd64

6

.rsync/a/kswapd0

ubuntu-20.04-amd64

10

.rsync/a/run

ubuntu-20.04-amd64

3

.rsync/a/stop

ubuntu-20.04-amd64

10

.rsync/b/a

ubuntu-20.04-amd64

7

.rsync/b/run

ubuntu-20.04-amd64

7

.rsync/b/stop

ubuntu-20.04-amd64

6

.rsync/c/blitz

ubuntu-20.04-amd64

1

.rsync/c/blitz32

ubuntu-20.04-amd64

3

.rsync/c/blitz64

ubuntu-20.04-amd64

3

.rsync/c/go

ubuntu-20.04-amd64

3

.rsync/c/run

ubuntu-20.04-amd64

6

.rsync/c/start

ubuntu-20.04-amd64

9

.rsync/c/stop

ubuntu-20.04-amd64

6

Analysis

  • max time kernel
    1s
  • max time network
    480s
  • platform
    ubuntu-20.04_amd64
  • resource
    ubuntu2004-amd64-20240221-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2004-amd64-20240221-enkernel:5.4.0-169-genericlocale:en-usos:ubuntu-20.04-amd64system
  • submitted
    15/04/2024, 16:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    .rsync/c/blitz64

  • Size

    1.0MB

  • MD5

    22f42b16687c76f764e81206e43d88b7

  • SHA1

    af06e9759d6bd551261c8440752a20f1cc7305d9

  • SHA256

    91f12a300565ebdb762a988cd52ef42d8ccf9ce9fd2079ea52e398c3a0692ac8

  • SHA512

    0b8317ac50d0b9ee0b4da1b656ac343fb918caebd31c91bc1a3a2e72326cf728c653f86a6f04ca41d18d75011b0e28a8611a911eeaf6289940fc921d003963dd

  • SSDEEP

    24576:zmHiL3gZdPuOpueLzFO7lH/H0BAO78dbReGYzK4C1CIeZHVUD:6HiMZd2O99O7lS58pAzpcCIeZqD

Score
3/10

Malware Config

Signatures

  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/.rsync/c/blitz64
    /tmp/.rsync/c/blitz64
    1⤵
    • Reads runtime system information
    PID:1468

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads