e804e13c4e8295ffd1068b2e29c1d991090997f695c74438c067cc2dc290e6ea

Analysis

max time kernel
137s
max time network
138s
platform
ubuntu-22.04_amd64
resource
ubuntu2204-amd64-20240611-en
resource tags

arch:amd64arch:i386image:ubuntu2204-amd64-20240611-enkernel:5.15.0-105-genericlocale:en-usos:ubuntu-22.04-amd64system
submitted
07-11-2024 03:26

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

e804e13c4e8295ffd1068b2e29c1d991090997f695c74438c067cc2dc290e6ea.elf
Size

10.1MB
MD5

373d378dcfcb44041ac6566216a368c0
SHA1

860c0919c9942aecf41644cea0ea06e280a310d7
SHA256

e804e13c4e8295ffd1068b2e29c1d991090997f695c74438c067cc2dc290e6ea
SHA512

de107bf41a5dc64d383088404eab57edb5cd6e78b4ba4714c03fc75358060f1b7bc43eabaa4d6f63558db88b9b66769a5d1f342fa20d746b59bfa6ce5635f933
SSDEEP

98304:dBR/5wqwdF45svGLBkw8KEFf89jERyOPR:h/M4Se118XFfye

Score

3^/10

discovery

Malware Config

Signatures

Enumerates kernel/hardware configuration 1 TTPs 1 IoCs

Reads contents of /sys virtual filesystem to enumerate system information.

discovery

System Information Discovery

T1082

Processes:

e804e13c4e8295ffd1068b2e29c1d991090997f695c74438c067cc2dc290e6ea.elf

description	ioc	process
File opened for reading	/sys/kernel/mm/transparent_hugepage/hpage_pmd_size	e804e13c4e8295ffd1068b2e29c1d991090997f695c74438c067cc2dc290e6ea.elf

/tmp/e804e13c4e8295ffd1068b2e29c1d991090997f695c74438c067cc2dc290e6ea.elf
/tmp/e804e13c4e8295ffd1068b2e29c1d991090997f695c74438c067cc2dc290e6ea.elf
1⤵
- Enumerates kernel/hardware configuration
PID:1565

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads