14335e256c1fb53f5581e775bf6910cc70c5c6306e33d54b9b3b1eb645df6ad8

Resubmissions

17-11-2024 22:23

241117-2a4yfazclg 3

Analysis

max time kernel
0s
platform
debian-9_armhf
resource
debian9-armhf-20240729-en
resource tags

arch:armhfimage:debian9-armhf-20240729-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
submitted
17-11-2024 22:23

Sharing

Copy URL

Twitter E-mail

Reason

Payload did not run: payload error: fork/exec /tmp/KRNL-REBORN.zip: exec format error

Report Analysis Logs

General

Target

KRNL-REBORN.zip
Size

6.7MB
MD5

14f31e292c9e411d55d28fdafa6b9c9c
SHA1

f19de56f96a6f4f41f4c03ad1416075dee24569f
SHA256

14335e256c1fb53f5581e775bf6910cc70c5c6306e33d54b9b3b1eb645df6ad8
SHA512

eea3b1c122f3eca80b0da9e064020aa0d308420d17c2b813128ffcf4b9c47bc17e1112aa8bf7fe716b63e8086a0591db417e2fcd75c62d69a98f0200c4971132
SSDEEP

98304:jXU309rFOSETZKqAaNsRq4y206FRvUARYJss8IRpmFxP4wbsEtLV27ij6ZZ0qEnk:43aMSy0qAS4jTv1ixRYfwq52e4odwVHF

Score

3^/10

discovery

Malware Config

Signatures

System Network Configuration Discovery 1 TTPs 1 IoCs

Adversaries may gather information about the network configuration of a system.

discovery

System Network Configuration Discovery

T1016

pid	Process
647	KRNL-REBORN.zip

/tmp/KRNL-REBORN.zip
/tmp/KRNL-REBORN.zip
1⤵
- System Network Configuration Discovery
PID:647

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1016

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Resubmissions

Analysis

Sharing

Errors

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads