Overview

overview

10

Static

static

10

3059676.bin

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    535s
  • max time network
    544s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240523-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    23-07-2024 12:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3059676.bin

  • Size

    1.2MB

  • MD5

    db0533432eb1071c80086e843a2010ec

  • SHA1

    f77840fb1fe66b251b8327544bd52f9dd55b32cc

  • SHA256

    489566ae52ff7d91debde176382bc81523bad6bad4b8d1f814576e932d498907

  • SHA512

    58690d8d6f99f6b30f199b9ec7ce6ee2ec210992fe2b6f159d4c7c45baba772c717d9b771e033b1a65c9ea0a4d66cf10c7d70a783d964fc837d8c556793099e8

  • SSDEEP

    24576:e845rGHu6gVJKG75oFpA0VWeX4F2y1q2rJp0:745vRVJKGtSA0VWeosu9p0

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 43 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit

Processes

  • /tmp/3059676.bin
    /tmp/3059676.bin
    1⤵
    • Loads a kernel module
    PID:2465

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /etc/init.d/DbSecuritySpt
    Filesize

    29B

    MD5

    352a572f61dd7eaaf91f67eedd79699a

    SHA1

    a08e9c524ef9984c4fad83b0207722f36f4a4127

    SHA256

    7ab944256d5ba2bc99cab3427f0d8efc4e573ba140ed4f26dc480ea88ec70c66

    SHA512

    7f73e1bb64c063e8595d9e3f90379645522ad5b39a6824b4870047b188314155219e1fd3cb85021aa9993dd22d89cf31c63143c9e552bfe71a322658245b7f0a

    Download Submit

  • /tmp/conf.n
    Filesize

    73B

    MD5

    dde5482c080700a996d527a3f84a68cd

    SHA1

    7d0ebf5248cb7f1ebed8ead2c35ea0606c1e8f1f

    SHA256

    3043fd09c6238e34014c7fd85953865a402d9b0b4db6bcd759cc85ffb2b375fa

    SHA512

    b037ab4890f901e4e5f1941d5582d1cbe81e6a2af36faae0d768eaba49024124c0df890a4c67ae647c28c1e1d35ce3e0d52a83f294b3487035fc4f0c8423aa9b

    Download Submit

  • /tmp/gates.lod
    Filesize

    4B

    MD5

    250413d2982f1f83aa62a3a323cd2a87

    SHA1

    3c24f257fbe14b58141a0ab7dbd5484c1d561f2c

    SHA256

    54a462dce3c1abb2b43ba63a42bc391fa5561bfeafe737bd1f4845b902ffbfe3

    SHA512

    e62538b99ca820e4ef2c24da6dc2afbe963c6793f0f7a93dbc231bdf44b77baa288d4ed18e8b05a3e5446454029d127fa54ead1c5fd9d7ff91fa21006e12f699

    Download Submit

  • /tmp/notify.file
    Filesize

    16B

    MD5

    c8c36d4a680ec073b05275a5e8694b1a

    SHA1

    8fe0a8af8bf5f3dd3823c9347b88f54c237efbee

    SHA256

    56acc0023e920a20686fd7782897dda65ae626e9a56302c4735d8c2fc11e833f

    SHA512

    6be74c4ab6bee720a900e624af067e2a6750ddf1e5759521d3922ef89c578bf38ecded159eacaba6bbf38f7ae7b867733fa5693ad4536b2d2b90039984e2e98d

    Download Submit