b717b0530df19d63df5e9973a9d74254806a1dedeb3ea2c08c70547ca5b50271

Analysis

max time kernel
0s
max time network
134s
platform
ubuntu-24.04_amd64
resource
ubuntu2404-amd64-20240523-en
resource tags

arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
submitted
28-09-2024 01:45

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

b717b0530df19d63df5e9973a9d74254806a1dedeb3ea2c08c70547ca5b50271.elf
Size

13.8MB
MD5

651fbb3b96139cbb8b60f3faf4e42eb2
SHA1

863636caa6c9969d18a4e735843a5f246e75a59c
SHA256

b717b0530df19d63df5e9973a9d74254806a1dedeb3ea2c08c70547ca5b50271
SHA512

c54b3db85b5c12a07930da7dd86445912c61f15b162997e9205d22c8a79bd8cfb6412a9a5edc15592d139eea78f6cea66d27353b32e33ebae2df37eab8760578
SSDEEP

98304:2bri2FlxZg3LV1y6conRQMaE8E/7ZVMpompZvVd+AGb:GxZg3XSMH8Ew1dsAGb

Score

3^/10

discovery

Malware Config

Signatures

Enumerates kernel/hardware configuration 1 TTPs 1 IoCs

Reads contents of /sys virtual filesystem to enumerate system information.

discovery

System Information Discovery

T1082

description	ioc	Process
File opened for reading	/sys/kernel/mm/transparent_hugepage/hpage_pmd_size	b717b0530df19d63df5e9973a9d74254806a1dedeb3ea2c08c70547ca5b50271.elf

/tmp/b717b0530df19d63df5e9973a9d74254806a1dedeb3ea2c08c70547ca5b50271.elf
/tmp/b717b0530df19d63df5e9973a9d74254806a1dedeb3ea2c08c70547ca5b50271.elf
1⤵
- Enumerates kernel/hardware configuration
PID:2476

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads