105e32c8ef13d4d001923c1a43a8849d069fc4adebe48e5e6a9e726eb605ce31 | Triage

Submit
Reports

Overview

overview

Static

static

7

.rsync/a/a

ubuntu-20.04-amd64

.rsync/a/init0

ubuntu-20.04-amd64

6

.rsync/a/kswapd0

ubuntu-20.04-amd64

.rsync/a/run

ubuntu-20.04-amd64

3

.rsync/a/stop

ubuntu-20.04-amd64

.rsync/b/a

ubuntu-20.04-amd64

7

.rsync/b/run

ubuntu-20.04-amd64

7

.rsync/b/stop

ubuntu-20.04-amd64

6

.rsync/c/blitz

ubuntu-20.04-amd64

1

.rsync/c/blitz32

ubuntu-20.04-amd64

3

.rsync/c/blitz64

ubuntu-20.04-amd64

3

.rsync/c/go

ubuntu-20.04-amd64

3

.rsync/c/run

ubuntu-20.04-amd64

6

.rsync/c/start

ubuntu-20.04-amd64

9

.rsync/c/stop

ubuntu-20.04-amd64

6

Analysis

max time kernel
0s
max time network
478s
platform
ubuntu-20.04_amd64
resource
ubuntu2004-amd64-20240221-en
resource tags

arch:amd64arch:i386image:ubuntu2004-amd64-20240221-enkernel:5.4.0-169-genericlocale:en-usos:ubuntu-20.04-amd64system
submitted
15-04-2024 16:01

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

.rsync/a/a

Resource

ubuntu2004-amd64-20240221-en

xmrig_linux antivm miner

ubuntu-20.04-amd64

11 signatures

600 seconds

Behavioral task

behavioral2

Sample

.rsync/a/init0

Resource

ubuntu2004-amd64-20240221-en

ubuntu-20.04-amd64

5 signatures

600 seconds

Behavioral task

behavioral3

Sample

.rsync/a/kswapd0

Resource

ubuntu2004-amd64-20240221-en

xmrig_linux antivm miner

ubuntu-20.04-amd64

9 signatures

600 seconds

Behavioral task

behavioral4

Sample

.rsync/a/run

Resource

ubuntu2004-amd64-20240221-en

ubuntu-20.04-amd64

1 signatures

600 seconds

Behavioral task

behavioral5

Sample

.rsync/a/stop

Resource

ubuntu2004-amd64-20240221-en

xmrig_linux miner

ubuntu-20.04-amd64

6 signatures

600 seconds

Behavioral task

behavioral6

Sample

.rsync/b/a

Resource

ubuntu2004-amd64-20240221-en

ubuntu-20.04-amd64

5 signatures

600 seconds

Behavioral task

behavioral7

Sample

.rsync/b/run

Resource

ubuntu2004-amd64-20240221-en

ubuntu-20.04-amd64

1 signatures

600 seconds

Behavioral task

behavioral8

Sample

.rsync/b/stop

Resource

ubuntu2004-amd64-20240221-en

ubuntu-20.04-amd64

4 signatures

600 seconds

Behavioral task

behavioral9

Sample

.rsync/c/blitz

Resource

ubuntu2004-amd64-20240221-en

ubuntu-20.04-amd64

0 signatures

600 seconds

Behavioral task

behavioral10

Sample

.rsync/c/blitz32

Resource

ubuntu2004-amd64-20240221-en

ubuntu-20.04-amd64

1 signatures

600 seconds

Behavioral task

behavioral11

Sample

.rsync/c/blitz64

Resource

ubuntu2004-amd64-20240221-en

ubuntu-20.04-amd64

1 signatures

600 seconds

Behavioral task

behavioral12

Sample

.rsync/c/go

Resource

ubuntu2004-amd64-20240221-en

ubuntu-20.04-amd64

1 signatures

600 seconds

Behavioral task

behavioral13

Sample

.rsync/c/run

Resource

ubuntu2004-amd64-20240221-en

ubuntu-20.04-amd64

1 signatures

600 seconds

Behavioral task

behavioral14

Sample

.rsync/c/start

Resource

ubuntu2004-amd64-20240221-en

antivm discovery

ubuntu-20.04-amd64

10 signatures

600 seconds

Behavioral task

behavioral15

Sample

.rsync/c/stop

Resource

ubuntu2004-amd64-20240221-en

ubuntu-20.04-amd64

4 signatures

600 seconds

Report Analysis Logs

General

Target

.rsync/c/blitz
Size

190B
MD5

a6db39f3ee5274c2d0fe55638cad5f19
SHA1

0f7ea48d877572f08d50ddbb548baf04c7095201
SHA256

4fe771908707d2eb526f9928be231b35b972efa3ccb280362ae1a18b6010ceb1
SHA512

fc1a0493b063cac7fe23acc2998a9729d2fa006f11206d2ff1037a234a48dc985c21989d80643953125b527027f1caf831ad7da3a163f84186d307f0b76e5dd8

Score

1^/10

Malware Config

Signatures

Processes

/tmp/.rsync/c/blitz
/tmp/.rsync/c/blitz
1⤵
PID:1492
- /usr/bin/dirname
  dirname /tmp/.rsync/c/blitz
  2⤵
  PID:1493
- /usr/bin/uname
  uname -m
  2⤵
  PID:1495
- /tmp/.rsync/c/blitz64
  /tmp/.rsync/c/blitz64
  2⤵
  PID:1496

/usr/bin/readlink
readlink -f /tmp/.rsync/c/blitz
1⤵
PID:1494

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy