1da86aa04214111ec8b4a2f46e6450f41233da1110f0b32890d522285a2ae38b

Analysis

max time kernel
0s
max time network
129s
platform
ubuntu-24.04_amd64
resource
ubuntu2404-amd64-20250307-en
resource tags

arch:amd64arch:i386image:ubuntu2404-amd64-20250307-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
submitted
15/03/2025, 02:13

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

1da86aa04214111ec8b4a2f46e6450f41233da1110f0b32890d522285a2ae38b.elf
Size

3.5MB
MD5

17a2f0bd0af19cecc108c5937e3054d0
SHA1

f439f4b1c1a7179bf5d2634d84342d413f360885
SHA256

1da86aa04214111ec8b4a2f46e6450f41233da1110f0b32890d522285a2ae38b
SHA512

74ca4ae79e50ff10d88113ebbca64b1037cca1a0ac5386e614c8cbfcf2a35cc6e1c33dc032b933ef9eb0bdc930c92a45643403714faceef124e8c6e0974f0a11
SSDEEP

49152:noNyONnuIr8+Mrb/TQvO90d7HjmAFd4A64nsfJuT1zdH0DfkYWIipvo5EM9BCmg4:kNBhzdHQyjaEr6m

Score

3^/10

discovery

Malware Config

Signatures

Enumerates kernel/hardware configuration 1 TTPs 1 IoCs

Reads contents of /sys virtual filesystem to enumerate system information.

discovery

System Information Discovery

T1082

description	ioc	Process
File opened for reading	/sys/kernel/mm/transparent_hugepage/hpage_pmd_size	1da86aa04214111ec8b4a2f46e6450f41233da1110f0b32890d522285a2ae38b.elf

/tmp/1da86aa04214111ec8b4a2f46e6450f41233da1110f0b32890d522285a2ae38b.elf
/tmp/1da86aa04214111ec8b4a2f46e6450f41233da1110f0b32890d522285a2ae38b.elf
1⤵
- Enumerates kernel/hardware configuration
PID:2483

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads