5fe3c7b349756250bb91a35fb6699b0116fb5b7021ac68b6c7343a818a27f239

Analysis

max time kernel
43s
max time network
45s
platform
ubuntu-24.04_amd64
resource
ubuntu2404-amd64-20240523-en
resource tags

arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
submitted
04-07-2024 19:56

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

monitor
Size

37KB
MD5

5945085b65c252a6d4eabf25ceb2cfec
SHA1

a54b44a943733addf9d7e06f50bb942427357092
SHA256

5fe3c7b349756250bb91a35fb6699b0116fb5b7021ac68b6c7343a818a27f239
SHA512

e6a34a6675d6be556a5db1be0257cdffc5eeccd48869b7ea69f56b6a930dd180aacf85ee40e7262899c60d53744a5b35cfbd6917af1e41eb7227852c58c9d7f9
SSDEEP

768:FvNxtzFJyLODwORCCbzl2PAv3HxTisBE9wq7jgn7kdxJPTqI:PjOOjdN2PKHxTib9wqQa7

Score

6^/10

Malware Config

Signatures

Writes file to system bin folder 1 TTPs 1 IoCs

Hijack Execution Flow

T1574

description	ioc	Process
File opened for modification	/bin/save	monitor

/tmp/monitor
/tmp/monitor
1⤵
- Writes file to system bin folder
PID:2477

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Hijack Execution Flow

T1574

Privilege Escalation

Hijack Execution Flow

T1574

Defense Evasion

Hijack Execution Flow

T1574

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/usr/bin/save

Filesize
5B

MD5
47b9cfc4184ad04c62879ebcb9d3f8c3

SHA1
a1f98f49ca3c27fb179b1142b176d25bf4fe5578

SHA256
bb8e1f53f8aa758477b799c715bb6a1e270e7a0b467969907ab1c9476872a6e1

SHA512
1c5b2bc0c9cc5fe26b7e9924853cc7ebac2d79e0321a0f3e091236b220bd515deac419e826096fe0f28ed504074dd773ed40b3fdc1ab6d2d5f59b91007e9ff21

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads