Malware Analysis Report

2024-11-13 12:56

Sample ID 240607-drgmgagg6x
Target fa3fc0db1399adc9d41869396425b4c915f601c9d6a4f9a1f333e0e06d0ee879.elf
SHA256 fa3fc0db1399adc9d41869396425b4c915f601c9d6a4f9a1f333e0e06d0ee879
Tags
upx
score
7/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral4

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
7/10

SHA256

fa3fc0db1399adc9d41869396425b4c915f601c9d6a4f9a1f333e0e06d0ee879

Threat Level: Shows suspicious behavior

The file fa3fc0db1399adc9d41869396425b4c915f601c9d6a4f9a1f333e0e06d0ee879.elf was found to be: Shows suspicious behavior.

Malicious Activity Summary

upx

UPX packed file

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2024-06-07 03:14

Signatures

UPX packed file

upx
Description Indicator Process Target
N/A N/A N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-07 03:14

Reported

2024-06-07 03:14

Platform

ubuntu1804-amd64-20240508-en

Max time kernel

0s

Command Line

[/tmp/fa3fc0db1399adc9d41869396425b4c915f601c9d6a4f9a1f333e0e06d0ee879.elf]

Signatures

N/A

Processes

/tmp/fa3fc0db1399adc9d41869396425b4c915f601c9d6a4f9a1f333e0e06d0ee879.elf

[/tmp/fa3fc0db1399adc9d41869396425b4c915f601c9d6a4f9a1f333e0e06d0ee879.elf]

Network

N/A

Files

N/A

Analysis: behavioral2

Detonation Overview

Submitted

2024-06-07 03:14

Reported

2024-06-07 03:14

Platform

debian9-armhf-20240418-en

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

N/A

Files

N/A

Analysis: behavioral3

Detonation Overview

Submitted

2024-06-07 03:14

Reported

2024-06-07 03:14

Platform

debian9-mipsbe-20240226-en

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

N/A

Files

N/A

Analysis: behavioral4

Detonation Overview

Submitted

2024-06-07 03:14

Reported

2024-06-07 03:14

Platform

debian9-mipsel-20240418-en

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

N/A

Files

N/A