3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a

Analysis

max time kernel
132s
max time network
151s
platform
ubuntu-24.04_amd64
resource
ubuntu2404-amd64-20250307-en
resource tags

arch:amd64arch:i386image:ubuntu2404-amd64-20250307-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
submitted
11/03/2025, 02:48

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
Size

54KB
MD5

994546ec709cd259d26572c6c648ff3c
SHA1

14eb6fb10abc34568901ed6dc5a8100cad229639
SHA256

3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a
SHA512

b56b64cad9c3401fc173970f61705abcae5d58fa33ab6af3dff3407c75084c5fb6778a10662dae69eb749e3653ed7fa8609c200270cc89ba91df207c7ade02fe
SSDEEP

1536:uITW3WsRUK1ZgQohZGvSM0vTwGF5TTSlai:uIK3lRUK1ZgH/GvSVvMaTUH

Score

7^/10

rootkit

Malware Config

Signatures

Loads a kernel module 32 IoCs

Loads a Linux kernel module, potentially to achieve persistence

rootkit

pid	Process
4132	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4132	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
4137	3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf

/tmp/3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
/tmp/3a87f9a9f0ac2407e7b413926cc23d47c5e17d4ab554bcbb221661dbc0feab9a.elf
1⤵
- Loads a kernel module
PID:4132

Windows 7 deprecation

Loading Replay Monitor...

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads