Overview

overview

10

Static

static

10

x86

ubuntu-24.04-amd64

7

Analysis

  • max time kernel
    133s
  • max time network
    149s
  • platform
    ubuntu-24.04_amd64
  • resource
    ubuntu2404-amd64-20250307-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2404-amd64-20250307-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
  • submitted
    27/03/2025, 23:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    x86

  • Size

    54KB

  • MD5

    2f64653724ac77a138828ca7e7054693

  • SHA1

    346609741135ea7506c9a3a5fb3ec39deefe75cf

  • SHA256

    dfc6bc194f0f7c428898da01088c166ffb1a8223b7853f14efe492027ffe2293

  • SHA512

    5f999252d397d3d7119d10defe59b4e07d2cb32d70112eeb991076a2aaeb6d1a8cd0473e9485c011ed1f508e18004ddd60130fbc48489a4e02e337f51c90bcb6

  • SSDEEP

    768:FmnthEsW5qnF15RY1dhPe7oXTmcMDj5gk9vWnTI4eBH+4sToQLDLFv:Yn/EsW5qhSh6am5lWnU4GH+dNLt

Score
7/10
rootkit

Malware Config

Signatures

  • Loads a kernel module 1 IoCs

    Loads a Linux kernel module, potentially to achieve persistence

    rootkit
  • Writes file to tmp directory 1 IoCs

    Malware often drops required files in the /tmp directory.

Processes

  • /tmp/x86
    /tmp/x86
    1⤵
    • Loads a kernel module
    • Writes file to tmp directory
    PID:2524

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads