Overview

overview

10

Static

static

10

ftp.elf

ubuntu-22.04-amd64

6

Analysis

  • max time kernel
    120s
  • max time network
    128s
  • platform
    ubuntu-22.04_amd64
  • resource
    ubuntu2204-amd64-20240611-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2204-amd64-20240611-enkernel:5.15.0-105-genericlocale:en-usos:ubuntu-22.04-amd64system
  • submitted
    25/02/2025, 06:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ftp.elf

  • Size

    113KB

  • MD5

    ba20264e5784f53f593fa0895f77c0b2

  • SHA1

    8e9f5d9a92a918f3cd5da0a19d866918edbdcd97

  • SHA256

    da6a2d0e481b64336f781b8f9f5b83816b1d1d3fef19907e8c85014c6bf87eb2

  • SHA512

    b5eda9e190524f64c58ab1c9326e036920604c22558421ab5d5b59ddd91b703c3901924a12ce704859cd850c4aa2c8d2c62d6a0126f086747b14df2d4996904b

  • SSDEEP

    3072:+lXYUNqD9taPtMFxW6IetJ8au49QuTsx6sDlaXo8txAtc4kG7gyqc:hXJM+XWnetJ8au4lG6UytxAtc4n7gyqc

Score
6/10
discovery

Malware Config

Signatures

  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

    discovery
  • Changes its process name 1 IoCs
  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

    discovery

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads