6eb43523dde0415730dd10f11b4988cf7e27d147d7ad6489c984aed69553a5db

Resubmissions

22-07-2024 13:49

240722-q42vds1fml 3

22-07-2024 13:45

240722-q2v9tszfmg 3

22-07-2024 13:41

240722-qzfflazema 3

Analysis

max time kernel
0s
max time network
0s
platform
ubuntu-22.04_amd64
resource
ubuntu2204-amd64-20240611-en
resource tags

arch:amd64arch:i386image:ubuntu2204-amd64-20240611-enkernel:5.15.0-105-genericlocale:en-usos:ubuntu-22.04-amd64system
submitted
22-07-2024 13:41

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

juicy_malware_linux_amd_64
Size

6.7MB
MD5

e31b0ad8dcfab89919066de244f3b3f5
SHA1

7ef08ee61c4b81c9a1fc1cade09f6c2bcb93c0b3
SHA256

6eb43523dde0415730dd10f11b4988cf7e27d147d7ad6489c984aed69553a5db
SHA512

53e5b8acbe30063e3e5213e5933301a8fc2dd214d1866a9c278006f87d24398d583f87a6994c56457032e4ede7544125e1ef1a323cb5d61cffd3ab00900cc5e3
SSDEEP

98304:SnpAqCHFIQEM2dNSJCBe+A8bJJPocrB35Twts5A2QxBy:UpAqClIQhENSJCDbJJACLU6AJ+

Score

3^/10

Malware Config

Signatures

Enumerates kernel/hardware configuration 1 TTPs 1 IoCs

Reads contents of /sys virtual filesystem to enumerate system information.

System Information Discovery

T1082

description	ioc	Process
File opened for reading	/sys/kernel/mm/transparent_hugepage/hpage_pmd_size	juicy_malware_linux_amd_64

/tmp/juicy_malware_linux_amd_64
/tmp/juicy_malware_linux_amd_64
1⤵
- Enumerates kernel/hardware configuration
PID:1566

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads