Analysis
-
max time kernel
20s -
max time network
131s -
platform
ubuntu-24.04_amd64 -
resource
ubuntu2404-amd64-20240523-en -
resource tags
-
submitted
03/12/2024, 03:12
General
-
Target
f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf
-
Size
17KB
-
MD5
56ae47729e916b612cebbc406b071ad3
-
SHA1
1977ab2c24e25e1e77daa7fc3eca9dc072f007ac
-
SHA256
f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e
-
SHA512
7c56ec7c8af7ae11ecb8259d02cf742610034e89429fb6b889666811d164cba93fc91f60caac590577137d412f2d1e5268f14affa5983e6126c079d255097586
-
SSDEEP
192:RnxzjwsWskaDanX6JENuZYhz0h+fcfLBj4ksNOVSP5SFhF8hQlSvOdfLqdo:BWskamFsqGhR9jRsUVS5SF7
Score
7/10
Malware Config
Signatures
-
Executes dropped EXE 44 IoCs
-
Creates/modifies Cron job 1 TTPs 44 IoCs
Cron allows running tasks on a schedule, and is commonly used for malware persistence.
-
Writes file to system bin folder 1 IoCs
-
Reads runtime system information 45 IoCs
Reads data from /proc virtual filesystem.
-
Writes file to tmp directory 45 IoCs
Malware often drops required files in the /tmp directory.
Processes
-
/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf1⤵
- Creates/modifies Cron job
- Writes file to system bin folder
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileuUpTY3/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf2⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileteVpRK/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf3⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileCzLiiu/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf4⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileeouOPk/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf5⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileSH7vwR/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf6⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileNibpRh/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf7⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filepJvgXI/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf8⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileJjD8AR/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf9⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/file1v90ID/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf10⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filervNkkF/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf11⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filebFpu2O/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf12⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileVNN9EI/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf13⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileShV5S6/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf14⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/file0FPU9c/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf15⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filea5AZYY/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf16⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filea1tw42/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf17⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filern3uI3/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf18⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileb9pKgl/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf19⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filejZlWEK/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf20⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileiF8F2J/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf21⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileF4qY7h/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf22⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filehtd9NE/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf23⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filegiXzXf/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf24⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileWnaVeo/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf25⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filedVvcac/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf26⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileES5qyR/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf27⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileH5E2OK/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf28⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileajgp7G/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf29⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileQ9GwSr/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf30⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileuvaPop/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf31⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileV6yqeX/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf32⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filewoEu7T/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf33⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileTixpHi/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf34⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileHYHr8R/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf35⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/file9KE4Eq/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf36⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/file3PLiIj/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf37⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filejB9oF1/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf38⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileuzDnAF/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf39⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filel6i0YB/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf40⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/filetrAfmU/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf41⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/file2gzUow/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf42⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileLl5IFh/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf43⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/file9TNusZ/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf44⤵
- Executes dropped EXE
- Creates/modifies Cron job
- Reads runtime system information
- Writes file to tmp directory
-
/tmp/fileVAaRuP/tmp/f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e.elf45⤵
- Executes dropped EXE
- Reads runtime system information
- Writes file to tmp directory
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
92B
MD53f006f7f81fc17be7f4a0d3da0fad5de
SHA197a94d3d0654c6551057af3809b52572bd7f9f5d
SHA256982f9e0f089b91ba79df723435099df15c72e1201a45010ee60226ab136c93bf
SHA51297d2ac0057427b940ada7c0fc805c1966e2535c3c3767ca85fef4a7e0fdc9d4ef9eb133530408b1e439df067881cb317e948ad9bfd487e958a04c97d9db978e0
-
Filesize
8KB
MD52583a1163cf9c07fc3eb078f7e0910b8
SHA1d85f3dd9c18d58ac87f375a54d18e14c1a1d1551
SHA256ef9e7ff3a64d7886703228da90250356d1a4fcdbfeb8180ba1515f42099f4729
SHA512297bd853352a353bc90b124bf761d52546e37e76282862392deff8588067b62225a7197078a26e5cccf00cebb7f73a883ecd11d567da4105a8b16d295a751a64
-
Filesize
17KB
MD556ae47729e916b612cebbc406b071ad3
SHA11977ab2c24e25e1e77daa7fc3eca9dc072f007ac
SHA256f424733e07038ba5ab92e7f1dc37be51e11425986c40fe941a1ce3c11ae7759e
SHA5127c56ec7c8af7ae11ecb8259d02cf742610034e89429fb6b889666811d164cba93fc91f60caac590577137d412f2d1e5268f14affa5983e6126c079d255097586