6bc61de84ee26ed3f184b9f9de3d7d51c4072ddd16e9b09a84e65c042d78ab4f

Analysis

max time kernel
149s
max time network
149s
platform
ubuntu-24.04_amd64
resource
ubuntu2404-amd64-20240523-en
resource tags

arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
submitted
03/12/2024, 13:05

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

6bc61de84ee26ed3f184b9f9de3d7d51c4072ddd16e9b09a84e65c042d78ab4f.elf
Size

7.5MB
MD5

9d26c9dd8fb7b2f2778fd4704184b958
SHA1

d487111a920eb6e5c879e2db27c84c59bf4f5900
SHA256

6bc61de84ee26ed3f184b9f9de3d7d51c4072ddd16e9b09a84e65c042d78ab4f
SHA512

d185efba7c180c77ddfd871eefdc063875afb2cbabfb024653076a3fc2fa4e0aa2b88a1af6d49e4645de22f1dbfaad0d084864214fc19e597cf082381ad826b7
SSDEEP

49152:sRm6tkO15VlRArb/TivO90d7HjmAFd4A64nsfJIyMVmbfugZjs38LVBiz6LbtPXN:glRJXp8L/KyZcCb7WEew+k

Score

3^/10

discovery

Malware Config

Signatures

Enumerates kernel/hardware configuration 1 TTPs 1 IoCs

Reads contents of /sys virtual filesystem to enumerate system information.

discovery

System Information Discovery

T1082

description	ioc	Process
File opened for reading	/sys/kernel/mm/transparent_hugepage/hpage_pmd_size	6bc61de84ee26ed3f184b9f9de3d7d51c4072ddd16e9b09a84e65c042d78ab4f.elf

/tmp/6bc61de84ee26ed3f184b9f9de3d7d51c4072ddd16e9b09a84e65c042d78ab4f.elf
/tmp/6bc61de84ee26ed3f184b9f9de3d7d51c4072ddd16e9b09a84e65c042d78ab4f.elf
1⤵
- Enumerates kernel/hardware configuration
PID:2830

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads