Analysis

  • max time kernel
    16s
  • max time network
    20s
  • platform
    ubuntu-20.04_amd64
  • resource
    ubuntu2004-amd64-20240221-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2004-amd64-20240221-enkernel:5.4.0-169-genericlocale:en-usos:ubuntu-20.04-amd64system
  • submitted
    24-04-2024 19:18

General

  • Target

    x86_32

  • Size

    100KB

  • MD5

    f52ac51a1924f1b04661b0bf1a5aa545

  • SHA1

    18df6df4fd93c87974f227e23f13dcc87b7ef3b8

  • SHA256

    08b72566507c0e07d6c3b6091b7de57b714eb0ac8404a93b1e830f7f8f5f5977

  • SHA512

    5298a765cfd9663c7aca5ad7f5f046ae6331509a117b53d1265a14c19731ac6a012236234e00c77fffeff6c0ef27e931e1f88b79ee5dcdfb52d9734304295751

  • SSDEEP

    1536:fykodiwJrj3LD2IYNjQ5ZyItGo8YSP7aUwIq1y7YuczGI:fGdiKrbLL5ZGoBIq1KVFI

Score
9/10

Malware Config

Signatures

  • Contacts a large (16789) amount of remote hosts 1 TTPs

    This may indicate a network scan to discover remotely running services.

  • Creates a large amount of network flows 1 TTPs

    This may indicate a network scan to discover remotely running services.

  • Enumerates running processes

    Discovers information about currently running processes on the system

  • Changes its process name 1 IoCs
  • Reads runtime system information 64 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/x86_32
    /tmp/x86_32
    1⤵
    • Changes its process name
    • Reads runtime system information
    PID:1465

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads