13d4f09d21472e72c6dfe4d00c6a8e88db293fdf2a29e91221ee297f244fd3f7

Analysis

max time kernel
0s
max time network
132s
platform
ubuntu-24.04_amd64
resource
ubuntu2404-amd64-20240523-en
resource tags

arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
submitted
24/08/2024, 01:02

Target

13d4f09d21472e72c6dfe4d00c6a8e88db293fdf2a29e91221ee297f244fd3f7.elf
Size

9.7MB
MD5

3933cddbcbd63370000ceb56f0464895
SHA1

bda647bf7e1851b3c056f04158168b89d5b35e96
SHA256

13d4f09d21472e72c6dfe4d00c6a8e88db293fdf2a29e91221ee297f244fd3f7
SHA512

9f355c3c5b793fdfa487c4fb85f1d3da6831fd110b07bff87979f54fcd752ef6fd99fc76d9be33ba230cb4c3702e857573c8417724b9a28dfa51062a19429433
SSDEEP

98304:bpcHBP5qrVRsZZOhr0oFDCtPl699ZI78mQ+E0:IisavtwajI78mQ70

Score

3^/10

Enumerates kernel/hardware configuration 1 TTPs 1 IoCs

Reads contents of /sys virtual filesystem to enumerate system information.

System Information Discovery

description	ioc	Process
File opened for reading	/sys/kernel/mm/transparent_hugepage/hpage_pmd_size	13d4f09d21472e72c6dfe4d00c6a8e88db293fdf2a29e91221ee297f244fd3f7.elf

/tmp/13d4f09d21472e72c6dfe4d00c6a8e88db293fdf2a29e91221ee297f244fd3f7.elf
/tmp/13d4f09d21472e72c6dfe4d00c6a8e88db293fdf2a29e91221ee297f244fd3f7.elf
1⤵
- Enumerates kernel/hardware configuration
PID:2801

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact