853af5ed57a9ad4a2205553583ca5a11b18c1518d5bab1712b3555afab8d72a0

Submit
Reports

Overview

overview

Static

static

Linux-Malw...2edf7a

ubuntu-22.04-amd64

Linux-Malw...6710d7

ubuntu-22.04-amd64

Linux-Malw...0830a2

ubuntu-22.04-amd64

Linux-Malw...dcb69d

ubuntu-22.04-amd64

Linux-Malw...596f0f

ubuntu-18.04-amd64

Linux-Malw...592210

ubuntu-22.04-amd64

Linux-Malw...c40b4c

ubuntu-18.04-amd64

Linux-Malw...cdece2

ubuntu-18.04-amd64

Linux-Malw...b313ce

ubuntu-18.04-amd64

Linux-Malw...230a51

ubuntu-22.04-amd64

Linux-Malw...fc44df

ubuntu-22.04-amd64

Linux-Malw...e656bb

ubuntu-24.04-amd64

Linux-Malw...644e73

ubuntu-22.04-amd64

Linux-Malw...b228c2

ubuntu-18.04-amd64

Linux-Malw...ce1ba6

ubuntu-18.04-amd64

Linux-Malw...e11460

ubuntu-22.04-amd64

Linux-Malw...f0c3d2

ubuntu-24.04-amd64

Linux-Malw...3b4abe

ubuntu-22.04-amd64

Linux-Malw...010e46

ubuntu-22.04-amd64

Linux-Malw...bf3ce5

ubuntu-22.04-amd64

Linux-Malw...7c31a2

ubuntu-22.04-amd64

Linux-Malw...b500a8

ubuntu-24.04-amd64

Linux-Malw...f50827

ubuntu-18.04-amd64

Linux-Malw...f50827

debian-9-armhf

Linux-Malw...f50827

debian-9-mips

Linux-Malw...f50827

debian-9-mipsel

Linux-Malw...109919

ubuntu-18.04-amd64

Linux-Malw...109919

debian-9-armhf

Linux-Malw...109919

debian-9-mips

Linux-Malw...109919

debian-9-mipsel

Linux-Malw...95127b

ubuntu-18.04-amd64

Linux-Malw...878b1a

debian-9-mips

Analysis

max time kernel
149s
max time network
7s
platform
ubuntu-22.04_amd64
resource
ubuntu2204-amd64-20240611-en
resource tags

arch:amd64arch:i386image:ubuntu2204-amd64-20240611-enkernel:5.15.0-105-genericlocale:en-usos:ubuntu-22.04-amd64system
submitted
17/02/2025, 18:23

Sharing

Copy URL

Twitter E-mail

Static task

static1

18 signatures

Behavioral task

behavioral1

Sample

Linux-Malware-Samples-main/00ae07c9fe63b080181b8a6d59c6b3b6f9913938858829e5a42ab90fb72edf7a

Resource

ubuntu2204-amd64-20240522.1-en

xmrig_linux miner

ubuntu-22.04-amd64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

Linux-Malware-Samples-main/03bb1cfd9e45844701aabc549f530d56f162150494b629ca19d83c1c696710d7

Resource

ubuntu2204-amd64-20240522.1-en

ubuntu-22.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

Linux-Malware-Samples-main/04b5e29283c60fcc255f8d2f289238430a10624e457f12f1bc866454110830a2

Resource

ubuntu2204-amd64-20240611-en

xmrig_linux antivm discovery miner

ubuntu-22.04-amd64

8 signatures

150 seconds

Behavioral task

behavioral4

Sample

Linux-Malware-Samples-main/05ca0e0228930e9ec53fe0f0b796255f1e44ab409f91bc27d20d04ad34dcb69d

Resource

ubuntu2204-amd64-20240611-en

discovery

ubuntu-22.04-amd64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

Linux-Malware-Samples-main/060b01f15c7fab6c4f656aa1f120ebc1221a71bca3177f50083db0ed77596f0f

Resource

ubuntu1804-amd64-20240729-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

Linux-Malware-Samples-main/063830221431f8136766f2d740df6419c8cd2f73b10e07fa30067df506592210

Resource

ubuntu2204-amd64-20240611-en

discovery

ubuntu-22.04-amd64

3 signatures

150 seconds

Behavioral task

behavioral7

Sample

Linux-Malware-Samples-main/06ed8158a168fa9635ed8d79679587f45cfd9825859e346361443eda0fc40b4c

Resource

ubuntu1804-amd64-20240611-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Linux-Malware-Samples-main/07d57c97f6af84f35a122b8a98f44242ac9da67f135cc337a88a231906cdece2

Resource

ubuntu1804-amd64-20240611-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Linux-Malware-Samples-main/0824494fb7b70a21e990854fe43386c6037fa31b4edc6d709e83a40dffb313ce

Resource

ubuntu1804-amd64-20240729-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Linux-Malware-Samples-main/0a4b417193f63a3cce4550e363548384eb007f89e89eb831cf1b7f5ddf230a51

Resource

ubuntu2204-amd64-20240522.1-en

discovery

ubuntu-22.04-amd64

1 signatures

150 seconds

Behavioral task

behavioral11

Sample

Linux-Malware-Samples-main/0a569366eeec52380b4462b455cacc9a788c2a7883b0a9965d20f0422dfc44df

Resource

ubuntu2204-amd64-20240729-en

discovery upx

ubuntu-22.04-amd64

4 signatures

150 seconds

Behavioral task

behavioral12

Sample

Linux-Malware-Samples-main/0a79399c441fca30d20e79fdabdd23ae33f3e16bf9c012cd1492604a03e656bb

Resource

ubuntu2404-amd64-20240523-en

ubuntu-24.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Linux-Malware-Samples-main/0ad6c635d583de499148b1ec46d8b39ae2785303e8b81996d3e9e47934644e73

Resource

ubuntu2204-amd64-20240611-en

ubuntu-22.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Linux-Malware-Samples-main/0afd9f52ddada582d5f907e0a8620cbdbe74ea31cf775987a5675226c1b228c2

Resource

ubuntu1804-amd64-20240611-en

credential_access defense_evasion discovery

ubuntu-18.04-amd64

9 signatures

150 seconds

Behavioral task

behavioral15

Sample

Linux-Malware-Samples-main/0b1c49ec2d53c4af21a51a34d9aa91e76195ceb442480468685418ba8ece1ba6

Resource

ubuntu1804-amd64-20240508-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

Linux-Malware-Samples-main/0b22cdc1b1b1f944e4ca8fced2e234d14aeeef830970e8ae7491cbdcb3e11460

Resource

ubuntu2204-amd64-20240611-en

ubuntu-22.04-amd64

2 signatures

150 seconds

Behavioral task

behavioral17

Sample

Linux-Malware-Samples-main/0b9d850ad22de9ed4951984456e77789793017e9df41271c58f45f411ef0c3d2

Resource

ubuntu2404-amd64-20240523-en

ubuntu-24.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

Linux-Malware-Samples-main/0bc9818011ff606efd3da8f1ad246f1445cdc6e74f606a1f70f4db99053b4abe

Resource

ubuntu2204-amd64-20240522.1-en

ubuntu-22.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

Linux-Malware-Samples-main/0d7960a39b92dad88986deea6e5861bd00fb301e92d550c232aebb36ed010e46

Resource

ubuntu2204-amd64-20240729-en

ubuntu-22.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Linux-Malware-Samples-main/0d9a34fd35ea6aa090c93f6f8310e111f9276bacbdf5f14e5f1f8c1dc7bf3ce5

Resource

ubuntu2204-amd64-20240611-en

ubuntu-22.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

Linux-Malware-Samples-main/0dcfa54a7e8a4e631ef466670ce604a61f3b0e8b3e9cf72c943278c0f77c31a2

Resource

ubuntu2204-amd64-20240729-en

xmrig_linux antivm discovery miner

ubuntu-22.04-amd64

11 signatures

150 seconds

Behavioral task

behavioral22

Sample

Linux-Malware-Samples-main/0e492a3be57312e9b53ea378fa09650191ddb4aee0eed96dfc71567863b500a8

Resource

ubuntu2404-amd64-20240523-en

ubuntu-24.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Linux-Malware-Samples-main/0f09e9e976cb08a75e787514536b63f3ad89b8a66ff1fcaaef33c0c032f50827

Resource

ubuntu1804-amd64-20240611-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Linux-Malware-Samples-main/0f09e9e976cb08a75e787514536b63f3ad89b8a66ff1fcaaef33c0c032f50827

Resource

debian9-armhf-20240611-en

debian-9-armhf

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Linux-Malware-Samples-main/0f09e9e976cb08a75e787514536b63f3ad89b8a66ff1fcaaef33c0c032f50827

Resource

debian9-mipsbe-20240611-en

debian-9-mips

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

Linux-Malware-Samples-main/0f09e9e976cb08a75e787514536b63f3ad89b8a66ff1fcaaef33c0c032f50827

Resource

debian9-mipsel-20240611-en

debian-9-mipsel

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

Linux-Malware-Samples-main/0f1b064c3f497db73a18166da367b5c3c2900aa9b00812faf97d04d3f5109919

Resource

ubuntu1804-amd64-20240611-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

Linux-Malware-Samples-main/0f1b064c3f497db73a18166da367b5c3c2900aa9b00812faf97d04d3f5109919

Resource

debian9-armhf-20240418-en

debian-9-armhf

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

Linux-Malware-Samples-main/0f1b064c3f497db73a18166da367b5c3c2900aa9b00812faf97d04d3f5109919

Resource

debian9-mipsbe-20240729-en

debian-9-mips

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

Linux-Malware-Samples-main/0f1b064c3f497db73a18166da367b5c3c2900aa9b00812faf97d04d3f5109919

Resource

debian9-mipsel-20240226-en

debian-9-mipsel

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

Linux-Malware-Samples-main/0f7838d0c16c24cb3b8ffc3573cc94fd05ec0e63fada3d10ac02b9c8bd95127b

Resource

ubuntu1804-amd64-20240611-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

Linux-Malware-Samples-main/1020ce1f18a2721b873152fd9f76503dcba5af7b0dd26d80fdb11efaf4878b1a

Resource

debian9-mipsbe-20240418-en

debian-9-mips

0 signatures

150 seconds

Report Analysis Logs

General

Target

Linux-Malware-Samples-main/0b22cdc1b1b1f944e4ca8fced2e234d14aeeef830970e8ae7491cbdcb3e11460
Size

13KB
MD5

3871cfbee9b6fab4d7cf65cd18a1353a
SHA1

52e8d2e4fe038698879a9dc13d7324e575266b27
SHA256

0b22cdc1b1b1f944e4ca8fced2e234d14aeeef830970e8ae7491cbdcb3e11460
SHA512

507f14d02a90fa38d79cb80d9722cc8d2ef5803666811f22d17954cfb10338d849f4e6b441aca3539a547570bd04efb6f45b90546cc37077d9a54eec34e28a2a
SSDEEP

192:GQIs/9FmdojAEl1bFf1VWdhsq5OT3KPoS:/5/9F6WjFNEdGq

Score

7^/10

Malware Config

Signatures

Traces itself 1 IoCs

Traces itself to prevent debugging attempts

pid	Process
1567	0b22cdc1b1b1f944e4ca8fced2e234d14aeeef830970e8ae7491cbdcb3e11460

Writes file to tmp directory 1 IoCs

Malware often drops required files in the /tmp directory.

description	ioc	Process
File opened for modification	/tmp/passwd.bak	0b22cdc1b1b1f944e4ca8fced2e234d14aeeef830970e8ae7491cbdcb3e11460

Processes

/tmp/Linux-Malware-Samples-main/0b22cdc1b1b1f944e4ca8fced2e234d14aeeef830970e8ae7491cbdcb3e11460
/tmp/Linux-Malware-Samples-main/0b22cdc1b1b1f944e4ca8fced2e234d14aeeef830970e8ae7491cbdcb3e11460
1⤵
- Traces itself
- Writes file to tmp directory
PID:1566

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/tmp/passwd.bak

Filesize
2KB

MD5
a457803380f9fc302a9a520f258ebf19

SHA1
264a387ce526d9ba3d0a98a4beb91d12a9618979

SHA256
eab5884c5bda06a680f52dc9f6f89d55e34288ad16e7eea3450b4a761e45e200

SHA512
8a715be71963b84fac3099a751462b7850896368250fd318fe6112d2fc0816ba356f03e2de47860a1013bffa1b784b116718985a8e4fc173a795b57ea0cb037f

Download Submit