0b7e9afa2d968eddf0071380b8fc9a86639330ef1aab9dec1fe037360db9352b | Triage

Analysis

max time kernel
134s
max time network
145s
platform
ubuntu-24.04_amd64
resource
ubuntu2404-amd64-20240729-en
resource tags

arch:amd64arch:i386image:ubuntu2404-amd64-20240729-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
submitted
28-12-2024 23:02

Sharing

Report Analysis Logs

General

Target

Aqua.dbg.elf
Size

57KB
MD5

508628e4841a44a7322afda52e41d4dd
SHA1

39c9b151b97c797dbc45c7ad91cda35000cbf4ba
SHA256

0b7e9afa2d968eddf0071380b8fc9a86639330ef1aab9dec1fe037360db9352b
SHA512

4816f4fe614acbbc629e17f6598d8b990eeb3341294869d7752caae82aadf4ca1e318a230c35281bbe59734d60550c611b4a62d932740e7dc01dc21c06b13c3a
SSDEEP

1536:K4wD2cRvuJvf7f0PLvjU+kPFwW5xNYtzd40vf35OfRJ:pwD2cRvuJvzf0PLLM9wW5cty0vBOfRJ

Score

7^/10

Malware Config

Signatures

Deletes itself 1 IoCs

pid	Process
2499	Aqua.dbg.elf

Changes its process name 1 IoCs

description	ioc	pid	Process
Changes the process name, possibly in an attempt to hide itself	httpd	2499	Aqua.dbg.elf

/tmp/Aqua.dbg.elf
/tmp/Aqua.dbg.elf
1⤵
- Deletes itself
- Changes its process name
PID:2499

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads