Analysis

  • max time kernel
    0s
  • max time network
    129s
  • platform
    ubuntu-18.04_amd64
  • resource
    ubuntu1804-amd64-20240729-en
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-20240729-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    30-08-2024 16:52

General

  • Target

    Cihad Channel Url sniper/node_modules/sshpk/bin/sshpk-conv

  • Size

    5KB

  • MD5

    609e158d49f62218881284bcb784fe2b

  • SHA1

    752e6f7532dbd0856e43a418b547dac9046f502b

  • SHA256

    4f1b44ad1628c6f826ac88b90f25f49c2622f26c211b477a3e56af7cf6723684

  • SHA512

    cca8637b0d4193e497c76d7e2f03ce46d4a041e2aeb400b3268946ef58e8d464a0d0946e2e96db886ba3379f5846c09354870eda2df29b63f2a711e65354fbaa

  • SSDEEP

    96:t/FsucdGpVrC8PkKWHGi+tjPpofAlViqLIgDZxFI5DnSFSEkSRximjm4QJDjo:1FTpOCm+jofAlViqLIOZ7CDS3kSjfoZs

Score
3/10

Malware Config

Signatures

  • Enumerates kernel/hardware configuration 1 TTPs 1 IoCs

    Reads contents of /sys virtual filesystem to enumerate system information.

  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/Cihad Channel Url sniper/node_modules/sshpk/bin/sshpk-conv
    "/tmp/Cihad Channel Url sniper/node_modules/sshpk/bin/sshpk-conv"
    1⤵
      PID:1511
    • /usr/local/sbin/node
      node "/tmp/Cihad Channel Url sniper/node_modules/sshpk/bin/sshpk-conv"
      1⤵
        PID:1511
      • /usr/local/bin/node
        node "/tmp/Cihad Channel Url sniper/node_modules/sshpk/bin/sshpk-conv"
        1⤵
          PID:1511
        • /usr/sbin/node
          node "/tmp/Cihad Channel Url sniper/node_modules/sshpk/bin/sshpk-conv"
          1⤵
            PID:1511
          • /usr/bin/node
            node "/tmp/Cihad Channel Url sniper/node_modules/sshpk/bin/sshpk-conv"
            1⤵
            • Enumerates kernel/hardware configuration
            • Reads runtime system information
            PID:1511

          Network

          MITRE ATT&CK Enterprise v15

          Replay Monitor

          Loading Replay Monitor...

          Downloads