cff20753e36a4c942dc4dab5a91fd621a42330e17a89185a5b7262280bcd9263 | Triage

Submit
Reports

Overview

overview

6

Static

static

1

2251bc7910...cf.elf

ubuntu-24.04-amd64

6

Sharing

General

Target

2251bc7910fe46fd0baf8bc05599bdcf.elf
Size

190KB
Sample

241121-m9pkgasclr
MD5

2251bc7910fe46fd0baf8bc05599bdcf
SHA1

0fef89711da11c550d3914debc0e663f5d2fb86c
SHA256

cff20753e36a4c942dc4dab5a91fd621a42330e17a89185a5b7262280bcd9263
SHA512

b5436c9f330cf32aeda31bc80ad375d4a1500c2a37f7317e70bd533fe4e6bae209da63f7ef623e0b05d6b4a03af54e93371afb3538754b9b195311496faa226c
SSDEEP

3072:sCktP9yEwFeIY0kRyxAuSnjL1Jo1q0+DNRJtlxaERyFzKr1Z70oh:sRPIEANY1RDXe8DNlYs

Score

6^/10

antivm discovery evasion execution linux persistence

Static task

static1

Behavioral task

behavioral1

Sample

2251bc7910fe46fd0baf8bc05599bdcf.elf

Resource

ubuntu2404-amd64-20240523-en

antivm discovery evasion execution persistence

ubuntu-24.04-amd64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2251bc7910fe46fd0baf8bc05599bdcf.elf
- Size
  
  190KB
- MD5
  
  2251bc7910fe46fd0baf8bc05599bdcf
- SHA1
  
  0fef89711da11c550d3914debc0e663f5d2fb86c
- SHA256
  
  cff20753e36a4c942dc4dab5a91fd621a42330e17a89185a5b7262280bcd9263
- SHA512
  
  b5436c9f330cf32aeda31bc80ad375d4a1500c2a37f7317e70bd533fe4e6bae209da63f7ef623e0b05d6b4a03af54e93371afb3538754b9b195311496faa226c
- SSDEEP
  
  3072:sCktP9yEwFeIY0kRyxAuSnjL1Jo1q0+DNRJtlxaERyFzKr1Z70oh:sRPIEANY1RDXe8DNlYs
Score

6^/10

antivm discovery evasion execution persistence
- Reads list of loaded kernel modules
  Reads the list of currently loaded kernel modules, possibly to detect virtual environments.
  evasion
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

User Execution

Malicious File

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

Virtualization/Sandbox Evasion

System Checks

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

antivmdiscoveryevasionexecutionpersistence

© 2018-2025

Terms | Privacy