Resubmissions

12-06-2024 17:05

240612-vmcamasdqh 6

12-06-2024 16:56

240612-vft7vsscma 7

12-06-2024 16:50

240612-vcjxqasbna 6

12-06-2024 16:40

240612-t6wb6swank 6

Analysis

  • max time kernel
    0s
  • max time network
    132s
  • platform
    ubuntu-18.04_amd64
  • resource
    ubuntu1804-amd64-20240611-en
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-20240611-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    12-06-2024 16:50

General

  • Target

    sketchyorignorant-main/SeTkernel

  • Size

    7KB

  • MD5

    b75f7b893afaba15d865fda1126cc977

  • SHA1

    9680514bae94fc0d75eeb9368344ca3d950efb17

  • SHA256

    09e7a0c17e178251edfdbc5c330c428efd30aad480a95bd193eca8bf68c3df2a

  • SHA512

    11be71b4f952bf843ebbe1f44ddf5d55fa10a1da4e1a6e27c61b158c566b9256f0025f4e15d27a535219f9a35f897d0c40828d2e243b2ab3bc9cace5ce7cb7f3

  • SSDEEP

    96:9eMtUI+KjwqE5PoZOg0pLdb4tg+A1lkawkEL7W2WKBTJI/DOSeOgaOqYpydPdmVe:9hKK0LZ5sY3+3rVTa95

Score
6/10

Malware Config

Signatures

  • Deletes log files 1 TTPs 2 IoCs

    Deletes log files on the system.

  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/sketchyorignorant-main/SeTkernel
    /tmp/sketchyorignorant-main/SeTkernel
    1⤵
    • Deletes log files
    PID:1477
    • /bin/mkdir
      mkdir -p /var/log/setup/tmp
      2⤵
      • Reads runtime system information
      PID:1478
    • /bin/rm
      rm -f /var/log/setup/tmp/SeTreturn
      2⤵
      • Deletes log files
      PID:1479

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /var/log/setup/tmp/SeTreturn
    Filesize

    100B

    MD5

    414be6effbd82b71ba153940fb309e9b

    SHA1

    5f1e3f142c52f814c8cc197c34b69cea9a8023d0

    SHA256

    1e7eb70aa24f7ae8f4a48499d2fb16f27a2b5118f87f87871c27d58502d50c29

    SHA512

    5206aba7c0de07fa19987533cb5f413740cbb746424be30c65e7c092f61c1d4d4ef1da8a4ee3d6762fa9ef8d94ffe8b6a5856c021ee2d6e51378c11a65e6a3a8