fad2009af05573883b3cf853438f4e84334c63e664fee7d32153fc664faac1f3

Analysis

max time kernel
149s
max time network
140s
platform
ubuntu-22.04_amd64
resource
ubuntu2204-amd64-20250307-en
resource tags

arch:amd64arch:i386image:ubuntu2204-amd64-20250307-enkernel:5.15.0-105-genericlocale:en-usos:ubuntu-22.04-amd64system
submitted
28/03/2025, 13:47

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

spide_cli/spide
Size

12.9MB
MD5

abd6ab957fff1eeda0df32c1f9156b48
SHA1

2cb74d3a95ecc2e7bed99ff780c2f5cf51d9fe59
SHA256

2d54120fa4378aebb17dce5960a39350d594b0e3ffd65ba3e8933502e732ed6d
SHA512

7099a0fb022e34bb4e9f189ed8c07d59ba8711416da222608a4195780e1a9a0a7568351e96ed0652caf6aa86c467a5410c01cacb83cab817898ccf03b3bfe8bb
SSDEEP

98304:GDBZcdTLaH6kCmsCr8VG32NOE3N/d/uR9H7I0n25:GfwBkCm9KNrd/d/uR9bI025

Score

3^/10

discovery

Malware Config

Signatures

Enumerates kernel/hardware configuration 1 TTPs 1 IoCs

Reads contents of /sys virtual filesystem to enumerate system information.

discovery

System Information Discovery

T1082

description	ioc	Process
File opened for reading	/sys/kernel/mm/transparent_hugepage/hpage_pmd_size	spide

Reads runtime system information 1 IoCs

Reads data from /proc virtual filesystem.

discovery

description	ioc	Process
File opened for reading	/proc/sys/net/core/somaxconn	spide

/tmp/spide_cli/spide
/tmp/spide_cli/spide
1⤵
- Enumerates kernel/hardware configuration
- Reads runtime system information
PID:1564

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads