Analysis

  • max time kernel
    4s
  • max time network
    13s
  • platform
    ubuntu-18.04_amd64
  • resource
    ubuntu1804-amd64-20240508-en
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-20240508-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    07-06-2024 02:50

General

  • Target

    fac0971b56235030e059a55ccd229626115bed33c9205420876ab386a092a32e.elf

  • Size

    87KB

  • MD5

    b901090f16d480f12ac15e66d60c38ba

  • SHA1

    3f3efbef64b381902ec721fd8246eaff8c7c8c23

  • SHA256

    fac0971b56235030e059a55ccd229626115bed33c9205420876ab386a092a32e

  • SHA512

    badef5e3b3005cbfc3cf54523cae066f345d60d42bf89c3b84e16d77c106a8d8a7774f12879cbebcb4a64c00811b7faa526e7df951dd76a2f480d18b2d4421a9

  • SSDEEP

    1536:xpmWc2AcighsZ82fJxfcpHD1mSsM8meUigBQ9TnkISGtAdr0xZ:xpmX2riED2frfWHhmLVUBQ9kVTr0x

Score
6/10

Malware Config

Signatures

  • Enumerates running processes

    Discovers information about currently running processes on the system

  • Changes its process name 1 IoCs
  • Reads runtime system information 64 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/fac0971b56235030e059a55ccd229626115bed33c9205420876ab386a092a32e.elf
    /tmp/fac0971b56235030e059a55ccd229626115bed33c9205420876ab386a092a32e.elf
    1⤵
    • Changes its process name
    • Reads runtime system information
    PID:1494

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads