54b6884ce916a7fb61d580246410112f100e40fd4a799cafe7de0e1f26c293c6

Analysis

max time kernel
149s
max time network
149s
platform
ubuntu-24.04_amd64
resource
ubuntu2404-amd64-20250307-en
resource tags

arch:amd64arch:i386image:ubuntu2404-amd64-20250307-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
submitted
11/03/2025, 03:13

Target

54b6884ce916a7fb61d580246410112f100e40fd4a799cafe7de0e1f26c293c6.elf
Size

45KB
MD5

c17843bdb7476299eaf606d81b7388c8
SHA1

85d0bc55f005963f79ff74cf1c165526f4c14f21
SHA256

54b6884ce916a7fb61d580246410112f100e40fd4a799cafe7de0e1f26c293c6
SHA512

2e3b6547cc07912aaec377b07e5dcd5bc60caeb11b5027c229cc80a295e7d163cb5ca261a5b6a9132d55196fbec104b457b2803c0270f6b515acd930579b6ce2
SSDEEP

768:qK9Q8sbsAUkwsUnUZx0+xBrx0NrVk/0aW5Ag+yGQZz6PPjzrKw/YJt31Dxe0/F:L9Q8sbsAUkwsUnCx0+xBrx0Fy875Ag+W

Score

7^/10

rootkit

Loads a kernel module 1 IoCs

Loads a Linux kernel module, potentially to achieve persistence

pid	Process
8460	54b6884ce916a7fb61d580246410112f100e40fd4a799cafe7de0e1f26c293c6.elf

Unexpected DNS network traffic destination 1 IoCs

Network traffic to other servers than the configured DNS servers was detected on the DNS port.

description	ioc
Destination IP	81.169.136.222

/tmp/54b6884ce916a7fb61d580246410112f100e40fd4a799cafe7de0e1f26c293c6.elf
/tmp/54b6884ce916a7fb61d580246410112f100e40fd4a799cafe7de0e1f26c293c6.elf
1⤵
- Loads a kernel module
PID:8460