870b576e0cdee7c1a28b2e5911cd734fecb12adf22c5a0bea89d9ef171e4e168

Resubmissions

26-12-2024 07:15

241226-h3l4jszkct 10

26-12-2024 07:12

241226-h1pfwszjhz 10

Analysis

max time kernel
120s
max time network
128s
platform
ubuntu-22.04_amd64
resource
ubuntu2204-amd64-20240611-en
resource tags

arch:amd64arch:i386image:ubuntu2204-amd64-20240611-enkernel:5.15.0-105-genericlocale:en-usos:ubuntu-22.04-amd64system
submitted
26-12-2024 07:12

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

e5be3bc448662450de34d64a0f24bf264858421d27310fdf7b0197f0ffa62204
Size

14.8MB
MD5

dc6dfed5b59a26eda57e5b7656c9564e
SHA1

6743b023b80f84029b302cbdfa5686a98d939dc5
SHA256

e5be3bc448662450de34d64a0f24bf264858421d27310fdf7b0197f0ffa62204
SHA512

71ffa19a9a9d7c645893acc497c03be3f8e697e2c302e8bbe847265472dbd8b4b74110c3f380a5d60f0a05ec26cd7fb5ab66a0d32244b807f6151dfddd9a7734
SSDEEP

98304:KJw6jqd4NZOHKGXFz/5rolyrHFBdcDi6H9EFCpdqNiqv:KK6j8qGXhKlyrXdcDhO0dqNi6

Score

3^/10

discovery

Malware Config

Signatures

Enumerates kernel/hardware configuration 1 TTPs 1 IoCs

Reads contents of /sys virtual filesystem to enumerate system information.

discovery

System Information Discovery

T1082

description	ioc	Process
File opened for reading	/sys/kernel/mm/transparent_hugepage/hpage_pmd_size	e5be3bc448662450de34d64a0f24bf264858421d27310fdf7b0197f0ffa62204

/tmp/e5be3bc448662450de34d64a0f24bf264858421d27310fdf7b0197f0ffa62204
/tmp/e5be3bc448662450de34d64a0f24bf264858421d27310fdf7b0197f0ffa62204
1⤵
- Enumerates kernel/hardware configuration
PID:2551

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads