9bc3d6b444fc9eb356de25ce87af11516652fcafc4f6e22255bdc821419f08a1

Analysis

max time kernel
145s
max time network
147s
platform
ubuntu-22.04_amd64
resource
ubuntu2204-amd64-20240522.1-en
resource tags

arch:amd64arch:i386image:ubuntu2204-amd64-20240522.1-enkernel:5.15.0-105-genericlocale:en-usos:ubuntu-22.04-amd64system
submitted
02/08/2024, 08:19

Target

9bc3d6b444fc9eb356de25ce87af11516652fcafc4f6e22255bdc821419f08a1.elf
Size

2.9MB
MD5

a16c8c84a076554fcd5084cf70b76210
SHA1

ddd3490efd2c416ba267d33f0a85c177bba62046
SHA256

9bc3d6b444fc9eb356de25ce87af11516652fcafc4f6e22255bdc821419f08a1
SHA512

a184cd2da9157a9a1da36b39b8a77d61e7b391081e4471a3f4386646cf401b07da47b637cb675c92fae340391a3ca86ffbadf34925862c1a6be2f868c2c8ef7d
SSDEEP

49152:GylhKcrb/TVvO90d7HjmAFd4A64nsfJ9wtnvwl1bZgbwnI6z11A/Tcq7uxYg55C2:Kb7bfKTT7uxpnAA

Score

3^/10

Enumerates kernel/hardware configuration 1 TTPs 1 IoCs

Reads contents of /sys virtual filesystem to enumerate system information.

System Information Discovery

description	ioc	Process
File opened for reading	/sys/kernel/mm/transparent_hugepage/hpage_pmd_size	9bc3d6b444fc9eb356de25ce87af11516652fcafc4f6e22255bdc821419f08a1.elf

/tmp/9bc3d6b444fc9eb356de25ce87af11516652fcafc4f6e22255bdc821419f08a1.elf
/tmp/9bc3d6b444fc9eb356de25ce87af11516652fcafc4f6e22255bdc821419f08a1.elf
1⤵
- Enumerates kernel/hardware configuration
PID:1549

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact