2d55c9f0f1092f3346729154d75c53d75880f1bb3436590de70de522549fee9e

Analysis

max time kernel
149s
max time network
153s
platform
ubuntu-22.04_amd64
resource
ubuntu2204-amd64-20240611-en
resource tags

arch:amd64arch:i386image:ubuntu2204-amd64-20240611-enkernel:5.15.0-105-genericlocale:en-usos:ubuntu-22.04-amd64system
submitted
03-12-2024 02:14

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

2d55c9f0f1092f3346729154d75c53d75880f1bb3436590de70de522549fee9e.elf
Size

14.6MB
MD5

13d394e6d48ca78a15a7f2382721d89e
SHA1

36a7664999f69cd4034e0ccab9ebda6211b98c4c
SHA256

2d55c9f0f1092f3346729154d75c53d75880f1bb3436590de70de522549fee9e
SHA512

9bc927e092fa05bcce4a0abeee8e4cddf9ad5dfcd4938514c6c40b1729534d4a95ab9df92a9d1f30e54e689c0f9cfdb9430a5c35739a7bf7cbdf33e76147a9eb
SSDEEP

98304:sAGdAYUblmtXOjY+Or4i0Utn5kuRwfSyPdafhPFgEe+ZD0x1SdoZx3me3hR:sAGdIl+yY+Id1BuNfSyPofhPFZpcHV

Score

3^/10

discovery

Malware Config

Signatures

Enumerates kernel/hardware configuration 1 TTPs 1 IoCs

Reads contents of /sys virtual filesystem to enumerate system information.

discovery

System Information Discovery

T1082

description	ioc	Process
File opened for reading	/sys/kernel/mm/transparent_hugepage/hpage_pmd_size	2d55c9f0f1092f3346729154d75c53d75880f1bb3436590de70de522549fee9e.elf

/tmp/2d55c9f0f1092f3346729154d75c53d75880f1bb3436590de70de522549fee9e.elf
/tmp/2d55c9f0f1092f3346729154d75c53d75880f1bb3436590de70de522549fee9e.elf
1⤵
- Enumerates kernel/hardware configuration
PID:1591

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads