Analysis
-
max time kernel
149s -
max time network
150s -
platform
ubuntu-24.04_amd64 -
resource
ubuntu2404-amd64-20240523-en -
resource tags
arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system -
submitted
23-12-2024 18:51
Behavioral task
behavioral1
Sample
x86_64.elf
Resource
ubuntu2404-amd64-20240523-en
ubuntu-24.04-amd64
1 signatures
150 seconds
General
-
Target
x86_64.elf
-
Size
50KB
-
MD5
530102aa1fcf93a075b18f08c3b62a6d
-
SHA1
3bb762f6b1b48ebf7a17721251960c305bd0ac6a
-
SHA256
4b2fc4692187d29b7f4360fdf8f12c808125943837085f1d77fc9d2d6918b712
-
SHA512
fd27f566f1917a8233e877ea7d846e37b663df0d2bab5e774b4d503c483f6c3e5a855713aa0d4aae360ed445ff44bc5b69aa35dd25333f5985eb18e932a53a79
-
SSDEEP
768:nHHqmdDSodln8muwr4roeuZ7YvK3VfoRYjGbWnaWUohyye43egkE6I2jvk:HKmdDSodl8m3nZsvIfurWnaEyyOr
Score
4/10
Malware Config
Signatures
-
Changes its process name 1 IoCs
description ioc pid Process Changes the process name, possibly in an attempt to hide itself /usr/lib/openssh/sftp-server 2417 x86_64.elf