Analysis
-
max time kernel
149s -
max time network
149s -
platform
ubuntu-24.04_amd64 -
resource
ubuntu2404-amd64-20240523-en -
resource tags
arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system -
submitted
19-10-2024 15:11
Static task
static1
Behavioral task
behavioral1
Sample
nps/npc
Resource
ubuntu2404-amd64-20240523-en
General
-
Target
nps/npc
-
Size
11.5MB
-
MD5
64cc88ff3f8735ee8b0a6687c84dee1d
-
SHA1
2a097acbf4bf132f0bb6de7ea33f42b3292f5001
-
SHA256
4714e8ad9c625070ca0a151ffc98d87d8e5da7c8ef42037ca5f43baede6cfac1
-
SHA512
179e1ce166dd76ccbf155cb96293401e05763b2ea5c133497fd76aceac9df6a991063b63eeeedf426ad12e566677ee5340ac433fdd3469fdce0110c24cd00548
-
SSDEEP
196608:1WTV+5v5ScZK3O48F9zV3pnFeXRBzV3ka0JuP:10V+53XF9zcH1ka0
Malware Config
Signatures
-
Enumerates kernel/hardware configuration 1 TTPs 1 IoCs
Reads contents of /sys virtual filesystem to enumerate system information.
Processes:
npcdescription ioc process File opened for reading /sys/kernel/mm/transparent_hugepage/hpage_pmd_size npc -
Processes:
npcdescription ioc process File opened for reading /proc/stat npc -
Writes file to tmp directory 1 IoCs
Malware often drops required files in the /tmp directory.
Processes:
npcdescription ioc process File opened for modification /tmp/npc_vkey.txt npc
Processes
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
16B
MD52ce6c29ffa79fa5744d071f9f7d5d7f5
SHA1c168995cb829d88fd5f71f5d229cdff9f9cc9baa
SHA256615212952605a6dcbc4e202cb094d3d436e49671cd6fc24dd4feb221c4866d9b
SHA5125da966f0a08e727e1f38444b97a3d79376734dfe8f5293a3d3e7201df427a2586f03b251832627f68a8b260296bbb42404fc08f1c03a61fc1aabb452ab4f924c