74985c1d669e6614ad1660cb5c4a58eeeaf442fa8fdc3d5c3d62eb3464728b87

Resubmissions

02/09/2024, 12:42

240902-pxcq9azgkp 3

02/09/2024, 12:38

240902-pvdkrs1drd 3

Analysis

max time kernel
125s
max time network
128s
platform
ubuntu-20.04_amd64
resource
ubuntu2004-amd64-20240611-en
resource tags

arch:amd64arch:i386image:ubuntu2004-amd64-20240611-enkernel:5.4.0-169-genericlocale:en-usos:ubuntu-20.04-amd64system
submitted
02/09/2024, 12:42

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

52c091744567ee53c199768955d7e864.payload
Size

7.8MB
MD5

eaff30f0c52840da550618e1fdc70235
SHA1

91e56606d0f152e25ba84c9aec736fe6b344b1be
SHA256

74985c1d669e6614ad1660cb5c4a58eeeaf442fa8fdc3d5c3d62eb3464728b87
SHA512

980fe0b84959cc39b25a62902b39ec9710f706cbbd990e27a5164a37d58763b89f2bee7b67f135b6ad428766a2797c2286971cac7841b5b23ef595e930441813
SSDEEP

98304:Vnwpck+KC9E7EO/+BQpGDRgtbI+Ez5pt78ic:VnXE7EO/UXzl5c

Score

3^/10

Malware Config

Signatures

Enumerates kernel/hardware configuration 1 TTPs 1 IoCs

Reads contents of /sys virtual filesystem to enumerate system information.

System Information Discovery

T1082

description	ioc	Process
File opened for reading	/sys/kernel/mm/transparent_hugepage/hpage_pmd_size	52c091744567ee53c199768955d7e864.payload

/tmp/52c091744567ee53c199768955d7e864.payload
/tmp/52c091744567ee53c199768955d7e864.payload
1⤵
- Enumerates kernel/hardware configuration
PID:2467

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads