Overview

overview

3

Static

static

3

npp.8.6.7....64.exe

ubuntu-18.04-amd64

npp.8.6.7....64.exe

debian-9-armhf

npp.8.6.7....64.exe

debian-9-mips

npp.8.6.7....64.exe

debian-9-mipsel

$PLUGINSDI...ns.dll

ubuntu-18.04-amd64

$PLUGINSDI...ns.dll

debian-9-armhf

$PLUGINSDI...ns.dll

debian-9-mips

$PLUGINSDI...ns.dll

debian-9-mipsel

$PLUGINSDI...em.dll

ubuntu-18.04-amd64

$PLUGINSDI...em.dll

debian-9-armhf

$PLUGINSDI...em.dll

debian-9-mips

$PLUGINSDI...em.dll

debian-9-mipsel

$PLUGINSDI...al.ini

ubuntu-18.04-amd64

$PLUGINSDI...al.ini

debian-9-armhf

$PLUGINSDI...al.ini

debian-9-mips

$PLUGINSDI...al.ini

debian-9-mipsel

$PLUGINSDI...er.bmp

ubuntu-18.04-amd64

$PLUGINSDI...er.bmp

debian-9-armhf

$PLUGINSDI...er.bmp

debian-9-mips

$PLUGINSDI...er.bmp

debian-9-mipsel

$PLUGINSDI...rd.bmp

ubuntu-18.04-amd64

$PLUGINSDI...rd.bmp

debian-9-armhf

$PLUGINSDI...rd.bmp

debian-9-mips

$PLUGINSDI...rd.bmp

debian-9-mipsel

$PLUGINSDI...gs.dll

ubuntu-18.04-amd64

$PLUGINSDI...gs.dll

debian-9-armhf

$PLUGINSDI...gs.dll

debian-9-mips

$PLUGINSDI...gs.dll

debian-9-mipsel

Analysis

  • max time kernel
    0s
  • max time network
    3s
  • platform
    ubuntu-18.04_amd64
  • resource
    ubuntu1804-amd64-20240729-en
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-20240729-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    13/09/2024, 20:36

Sharing

Copy URL
Twitter E-mail

Errors

Reason
Payload did not run: payload error: fork/exec /tmp/$PLUGINSDIR/modern-wizard.bmp: exec format error
Report Analysis Logs

General

  • Target

    $PLUGINSDIR/modern-wizard.bmp

  • Size

    150KB

  • MD5

    c2cf6928a3ab574a5548b4dc1c38b6c0

  • SHA1

    8860ff529f60b38a93912f88f234d46eebcf664f

  • SHA256

    2125550c12fa512782f2016e802d70bc51f4a06017cfbd4176b4a994eb2542f0

  • SHA512

    fb6b28f2677b1418f8ebf621dd1e201b127b53b998c02300caa66a9f374f681961f5b9a7f843d6082821890df9e3d91a3403b4f83d70d155e9c841893e1f80e4

  • SSDEEP

    3072:NKrK243U6RNfWAKVZ17e28FTfWDG7wFlF9:NKW3UMfWTpe2eODG7UF9

Score
1/10

Malware Config

Signatures

Processes

  • /tmp/$PLUGINSDIR/modern-wizard.bmp
    "/tmp/\$PLUGINSDIR/modern-wizard.bmp"
    1⤵
      PID:1504

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads