Overview

overview

10

Static

static

10

1544-1-0x0...ry.dmp

ubuntu-20.04-amd64

7

Analysis

  • max time kernel
    149s
  • max time network
    131s
  • platform
    ubuntu-20.04_amd64
  • resource
    ubuntu2004-amd64-20240418-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2004-amd64-20240418-enkernel:5.4.0-169-genericlocale:en-usos:ubuntu-20.04-amd64system
  • submitted
    06-05-2024 23:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1544-1-0x0000000000400000-0x0000000000612cb8-memory.dmp

  • Size

    64KB

  • MD5

    798466c0bca7f4685da26a6e6ca84e9a

  • SHA1

    788fa6d54e2bfa071cfa3d12ee32c10f42685a0a

  • SHA256

    12c9b376e774627c69ab50ee9f3b31ab6bf3cf752fb3751a931ede695d3b066e

  • SHA512

    d37d268ae9044b661d05c2895e63a16fcfadeed9998487b0cee845ba3a8748b6dbd44c211dcddb408794c01baab22f79f58db12528413bee6a55c985ba350aad

  • SSDEEP

    1536:JRMw6aLO8KDLABUA8MjsILKNYIY2I9hyG7SbAW0Uwo:JRMZaLtKDLaUzastNYIc9hyG70ozo

Score
7/10

Malware Config

Signatures

  • Modifies Watchdog functionality 1 TTPs 2 IoCs

    Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

  • Enumerates running processes

    Discovers information about currently running processes on the system

  • Writes file to system bin folder 1 TTPs 2 IoCs
  • Reads runtime system information 64 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/1544-1-0x0000000000400000-0x0000000000612cb8-memory.dmp
    /tmp/1544-1-0x0000000000400000-0x0000000000612cb8-memory.dmp
    1⤵
    • Modifies Watchdog functionality
    • Writes file to system bin folder
    • Reads runtime system information
    PID:1527

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads