819a4f8785f126f9233b094a15531497397f4505c797495b567b08351fc6e135 | Triage

Resubmissions

22-08-2024 13:50

240822-q5a33ashjm 7

22-08-2024 13:28

240822-qqpb5syhqd 7

Analysis

max time kernel
101s
max time network
106s
platform
ubuntu-20.04_amd64
resource
ubuntu2004-amd64-20240611-en
resource tags

arch:amd64arch:i386image:ubuntu2004-amd64-20240611-enkernel:5.4.0-169-genericlocale:en-usos:ubuntu-20.04-amd64system
submitted
22-08-2024 13:28

Sharing

Report Analysis Logs

General

Target

botnt.i686
Size

61KB
MD5

ed3a4feeaba4d59f86d80f02014429e4
SHA1

a4735812df9b710c2e06ffadb14a1218f97fdfcc
SHA256

819a4f8785f126f9233b094a15531497397f4505c797495b567b08351fc6e135
SHA512

ff5791c43be7f1d63096acf6467e1d4cb46a8324d62e1ae058549b6d1abff07ed10fd85f18b3604dfac5b2143ec42473fb96f2fafc7b2941c929aa87bd513aa4
SSDEEP

1536:hy1xMwDYx6h7YiP2UhXiXwUlSZ9nGUQ310j4om3iB/Tri:hGxRDC6h7YienAU0PsqjZP9X

Score

7^/10

Malware Config

Signatures

Renames itself 1 IoCs

pid	Process
1401	botnt.i686

Changes its process name 1 IoCs

description	ioc	pid	Process
Changes the process name, possibly in an attempt to hide itself	upnpc-static	1401	botnt.i686

/tmp/botnt.i686
/tmp/botnt.i686
1⤵
- Renames itself
- Changes its process name
PID:1401

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads