d46eb24e02e250f2955bc192e1b40cf0268491b0cb11b4a337d9d21180dac4f2

Analysis

max time kernel
122s
max time network
129s
platform
ubuntu-22.04_amd64
resource
ubuntu2204-amd64-20240522.1-en
resource tags

arch:amd64arch:i386image:ubuntu2204-amd64-20240522.1-enkernel:5.15.0-105-genericlocale:en-usos:ubuntu-22.04-amd64system
submitted
18-12-2024 03:27

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

d46eb24e02e250f2955bc192e1b40cf0268491b0cb11b4a337d9d21180dac4f2.elf
Size

13.5MB
MD5

f0382cb2455cf655ad8a79b96be4a935
SHA1

357abb3cf71f6b9afc043b14cffe2d48182dac59
SHA256

d46eb24e02e250f2955bc192e1b40cf0268491b0cb11b4a337d9d21180dac4f2
SHA512

b3f011623dda8bd202321c0ab8bd8143687388761228b91b8d578e5bbba855c5160454646e4b94517d67fe24c11116686d5b586bb52dfa6cfbdb419b6f827340
SSDEEP

98304:nYUpUep1ecYglJVDgoEtSGJdYfXnX0sFgb+EtxDbgb/vWbn:nYUpUeVnDoJd8nksFgvob/a

Score

3^/10

discovery

Malware Config

Signatures

Enumerates kernel/hardware configuration 1 TTPs 1 IoCs

Reads contents of /sys virtual filesystem to enumerate system information.

discovery

System Information Discovery

T1082

description	ioc	Process
File opened for reading	/sys/kernel/mm/transparent_hugepage/hpage_pmd_size	d46eb24e02e250f2955bc192e1b40cf0268491b0cb11b4a337d9d21180dac4f2.elf

/tmp/d46eb24e02e250f2955bc192e1b40cf0268491b0cb11b4a337d9d21180dac4f2.elf
/tmp/d46eb24e02e250f2955bc192e1b40cf0268491b0cb11b4a337d9d21180dac4f2.elf
1⤵
- Enumerates kernel/hardware configuration
PID:1558

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads