e8c15cf6a8d439ad8d6ddbbeca0fd5e0845cd654a62448aa47365f32970605b4

Analysis

max time kernel
120s
max time network
140s
platform
ubuntu-24.04_amd64
resource
ubuntu2404-amd64-20240523-en
resource tags

arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
submitted
02-12-2024 20:40

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

GRIM_STEAK.elf
Size

13.7MB
MD5

a7af7ee583a18baf5344a1d0ce44065f
SHA1

0cc3069f2c926331523fa126b447bd48224e8b8b
SHA256

e8c15cf6a8d439ad8d6ddbbeca0fd5e0845cd654a62448aa47365f32970605b4
SHA512

af8e19cca8be56bd8ddedf13531005f119c60dd93e3113f6aa3bf2bb09e84c859fde9cabb288222a868162f29301a9e880a509e8777c2c15ffed5aedef40ebd5
SSDEEP

98304:9ksBKewNdSvvDtskv3h8+S8zf+kV6dPHQE9GHw1fCD:9ksBKjuGsh8T86kwdBZK

Score

3^/10

discovery

Malware Config

Signatures

Enumerates kernel/hardware configuration 1 TTPs 1 IoCs

Reads contents of /sys virtual filesystem to enumerate system information.

discovery

System Information Discovery

T1082

Processes:

GRIM_STEAK.elf

description	ioc	Process
File opened for reading	/sys/kernel/mm/transparent_hugepage/hpage_pmd_size	GRIM_STEAK.elf

/tmp/GRIM_STEAK.elf
/tmp/GRIM_STEAK.elf
1⤵
- Enumerates kernel/hardware configuration
PID:2841

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads