95c457e0b54648c1899426f5845a8c0a796d238fad638ca7f8ec70cd70576616 | Triage

Analysis

max time kernel
0s
max time network
183s
platform
ubuntu-24.04_amd64
resource
ubuntu2404-amd64-20240523-en
resource tags

arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
submitted
12-09-2024 16:35

Sharing

Report Analysis Logs

General

Target

New Folder/fishy/.git/hooks/commit-msg.sample
Size

896B
MD5

579a3c1e12a1e74a98169175fb913012
SHA1

ee1ed5aad98a435f2020b6de35c173b75d9affac
SHA256

1f74d5e9292979b573ebd59741d46cb93ff391acdd083d340b94370753d92437
SHA512

d6bb7fa747f4625adf1877f546565cbe812ca7dd4168f7e9068e6732555d8737eba549546cf5946649e3f38de82d173aaf9c160a4c9f9445655258b4c5f955eb

Score

3^/10

discovery

Malware Config

Signatures

Reads runtime system information 2 IoCs
Reads data from /proc virtual filesystem.
discovery

Processes:

sedgrep

description ioc process

File opened for reading /proc/filesystems sed
File opened for reading /proc/self/maps grep

/tmp/New Folder/fishy/.git/hooks/commit-msg.sample
"/tmp/New Folder/fishy/.git/hooks/commit-msg.sample"
1⤵
PID:2443

/usr/bin/grep
grep "^Signed-off-by: "
2⤵
- Reads runtime system information
PID:2445

/usr/bin/sort
sort
2⤵
PID:2446

/usr/bin/uniq
uniq -c
2⤵
PID:2447

/usr/bin/sed
sed -e "/^[ ]*1[ ]/d"
2⤵
- Reads runtime system information
PID:2448

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...