e75d18a94a0b75d796a8b2340094893cc97ce1bdc2828b4a4aeb492be8bc2154 | Triage

Analysis

max time kernel
149s
max time network
149s
platform
ubuntu-24.04_amd64
resource
ubuntu2404-amd64-20240729-en
resource tags

arch:amd64arch:i386image:ubuntu2404-amd64-20240729-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
submitted
09/08/2024, 19:51

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

bot.x86.elf
Size

87KB
MD5

803e716d0955800ad4fe5f872a4dc171
SHA1

5ab61b1d242f81c085badee574a88c0fc1320480
SHA256

e75d18a94a0b75d796a8b2340094893cc97ce1bdc2828b4a4aeb492be8bc2154
SHA512

b31a59f15695134a363efe7d4a229cbe7580eae56a149dd3f71fbf5f23e26bd77be121a8d34ccc420979bbb6816c21496e613c188099d8a934459e96465bfcd1
SSDEEP

1536:xpmWc2AcighsZ82fJxfcHTHD1mSsM8meUigBQ9TnkISGtAdG0xZ:xpmX2riED2frfSTHhmLVUBQ9kVTG0x

Score

7^/10

rootkit

Malware Config

Signatures

Loads a kernel module 26 IoCs

Loads a Linux kernel module, potentially to achieve persistence

pid	Process
2483	bot.x86.elf
2483	bot.x86.elf
2484	Process not Found
2484	Process not Found
2484	Process not Found
2484	Process not Found
2484	Process not Found
2484	Process not Found
2484	Process not Found
2484	Process not Found
2484	Process not Found
2484	Process not Found
2484	Process not Found
2484	Process not Found
2484	Process not Found
2484	Process not Found
2484	Process not Found
2484	Process not Found
2484	Process not Found
2484	Process not Found
2484	Process not Found
2484	Process not Found
2484	Process not Found
2484	Process not Found
2484	Process not Found
2484	Process not Found

/tmp/bot.x86.elf
/tmp/bot.x86.elf
1⤵
- Loads a kernel module
PID:2483

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads