Analysis

  • max time kernel
    3s
  • platform
    debian-9_mipsel
  • resource
    debian9-mipsel-20240729-en
  • resource tags

    arch:mipselimage:debian9-mipsel-20240729-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
  • submitted
    02-12-2024 18:22

General

  • Target

    PoshC2-master/cookie_decrypter.py

  • Size

    1KB

  • MD5

    889e16f92b183541589f8f1d74bda195

  • SHA1

    30a03ff1ae25a359f5ca9c366a5ffb3e2dbe7d55

  • SHA256

    17553f058cea54ab726eaf7bf03b9eebb5ad2637ae2d062203fad39e7af6e35d

  • SHA512

    cfbebe15dc6f23cb0ace115f44dd47171ab8112c41ab8e73b5c938683802bc66de7e840cefea25174497c34081d41ba88661778f6d50b75607a41b04d2d133cd

Score
3/10

Malware Config

Signatures

  • Command and Scripting Interpreter: Python 1 TTPs 4 IoCs

    Execution via Python.

Processes

  • /tmp/PoshC2-master/cookie_decrypter.py
    /tmp/PoshC2-master/cookie_decrypter.py
    1⤵
      PID:726
    • /usr/local/sbin/python3
      python3 /tmp/PoshC2-master/cookie_decrypter.py
      1⤵
      • Command and Scripting Interpreter: Python
      PID:726
    • /usr/local/bin/python3
      python3 /tmp/PoshC2-master/cookie_decrypter.py
      1⤵
      • Command and Scripting Interpreter: Python
      PID:726
    • /usr/sbin/python3
      python3 /tmp/PoshC2-master/cookie_decrypter.py
      1⤵
      • Command and Scripting Interpreter: Python
      PID:726
    • /usr/bin/python3
      python3 /tmp/PoshC2-master/cookie_decrypter.py
      1⤵
      • Command and Scripting Interpreter: Python
      PID:726

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads