Resubmissions

01-11-2024 18:06

241101-wp5wdsvnel 4

01-11-2024 16:27

241101-tx4bes1lcx 4

01-11-2024 16:24

241101-twjkma1lb1 7

Analysis

  • max time kernel
    255s
  • max time network
    1150s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20240729-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20240729-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    01-11-2024 18:06

General

  • Target

    sshx

  • Size

    7.3MB

  • MD5

    4655941d7ea27788f29e7101794a24bb

  • SHA1

    e8605a27857832503bacfbe106eaf2a02361b5e3

  • SHA256

    9d7ad8da8ce2bcdbbe2164e37d5759c9efc22e68ddc11f4502c43b14b349bdec

  • SHA512

    0a8011b87021dd9b5d0350b38ba7d8e837833405b95a8762b7b8833800327470a2c1b0b5e1b5101a8448ba3531123e04502759be43fb96860616623973f7e43e

  • SSDEEP

    98304:GpitswbS0eSojJ5+NfoIVoKCT5K+dmcF:GUsKS0eeBHc

Score
4/10

Malware Config

Signatures

  • Changes its process name 7 IoCs
  • Enumerates kernel/hardware configuration 1 TTPs 3 IoCs

    Reads contents of /sys virtual filesystem to enumerate system information.

  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/sshx
    /tmp/sshx
    1⤵
    • Changes its process name
    • Enumerates kernel/hardware configuration
    • Reads runtime system information
    PID:2484

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads