IOC Report

loading gif

Files

File Path
Type
Category
Malicious
1TnmkstVG8
ELF 32-bit MSB executable, SPARC, version 1 (SYSV), statically linked, stripped
initial sample
 malicious
/var/cache/motd-news
ASCII text
dropped
 clean

Processes

Path
Cmdline
Malicious
/tmp/1TnmkstVG8
/tmp/1TnmkstVG8
 clean
/tmp/1TnmkstVG8
n/a
 clean
/usr/bin/dash
n/a
 clean
/usr/bin/cat
cat /tmp/tmp.gtT3aisjF5
 clean
/usr/bin/dash
n/a
 clean
/usr/bin/head
head -n 10
 clean
/usr/bin/dash
n/a
 clean
/usr/bin/tr
tr -d \\000-\\011\\013\\014\\016-\\037
 clean
/usr/bin/dash
n/a
 clean
/usr/bin/cut
cut -c -80
 clean
/usr/bin/dash
n/a
 clean
/usr/bin/cat
cat /tmp/tmp.gtT3aisjF5
 clean
/usr/bin/dash
n/a
 clean
/usr/bin/head
head -n 10
 clean
/usr/bin/dash
n/a
 clean
/usr/bin/tr
tr -d \\000-\\011\\013\\014\\016-\\037
 clean
/usr/bin/dash
n/a
 clean
/usr/bin/cut
cut -c -80
 clean
/usr/bin/dash
n/a
 clean
/usr/bin/rm
rm -f /tmp/tmp.gtT3aisjF5 /tmp/tmp.0HpvoUv25y /tmp/tmp.kZRxhtfsZX
 clean
There are 10 hidden processes, click here to show them.

URLs

Name
IP
Malicious
https://ubuntu.com/blog/microk8s-memory-optimisation
unknown
 clean

IPs

IP
Domain
Country
Malicious
34.249.145.219
unknown
United States
clean
45.95.169.120
unknown
Croatia (LOCAL Name: Hrvatska)
clean
46.244.112.164
unknown
Netherlands
clean
109.202.202.202
unknown
Switzerland
clean
189.57.206.167
unknown
Brazil
clean
37.80.245.107
unknown
Germany
clean
91.189.91.43
unknown
United Kingdom
clean
91.189.91.42
unknown
United Kingdom
clean