IOC Report

loading gif

Files

File Path
Type
Category
Malicious
OisIh0q3Gw
ELF 32-bit LSB executable, Renesas SH, version 1 (SYSV), statically linked, stripped
initial sample
 malicious
/var/cache/motd-news
ASCII text
dropped
 clean

Processes

Path
Cmdline
Malicious
/tmp/OisIh0q3Gw
/tmp/OisIh0q3Gw
 clean
/tmp/OisIh0q3Gw
n/a
 clean
/tmp/OisIh0q3Gw
n/a
 clean
/tmp/OisIh0q3Gw
n/a
 clean
/tmp/OisIh0q3Gw
n/a
 clean
/tmp/OisIh0q3Gw
n/a
 clean
/tmp/OisIh0q3Gw
n/a
 clean
/tmp/OisIh0q3Gw
n/a
 clean
/tmp/OisIh0q3Gw
n/a
 clean
/tmp/OisIh0q3Gw
n/a
 clean
/tmp/OisIh0q3Gw
n/a
 clean
/tmp/OisIh0q3Gw
n/a
 clean
/tmp/OisIh0q3Gw
n/a
 clean
/tmp/OisIh0q3Gw
n/a
 clean
/tmp/OisIh0q3Gw
n/a
 clean
/tmp/OisIh0q3Gw
n/a
 clean
/tmp/OisIh0q3Gw
n/a
 clean
/usr/bin/dash
n/a
 clean
/usr/bin/cat
cat /tmp/tmp.44aCm1an2s
 clean
/usr/bin/dash
n/a
 clean
/usr/bin/head
head -n 10
 clean
/usr/bin/dash
n/a
 clean
/usr/bin/tr
tr -d \\000-\\011\\013\\014\\016-\\037
 clean
/usr/bin/dash
n/a
 clean
/usr/bin/cut
cut -c -80
 clean
/usr/bin/dash
n/a
 clean
/usr/bin/cat
cat /tmp/tmp.44aCm1an2s
 clean
/usr/bin/dash
n/a
 clean
/usr/bin/head
head -n 10
 clean
/usr/bin/dash
n/a
 clean
/usr/bin/tr
tr -d \\000-\\011\\013\\014\\016-\\037
 clean
/usr/bin/dash
n/a
 clean
/usr/bin/cut
cut -c -80
 clean
/usr/bin/dash
n/a
 clean
/usr/bin/rm
rm -f /tmp/tmp.44aCm1an2s /tmp/tmp.MG72tyDHko /tmp/tmp.Y5mAFBQOFz
 clean
There are 25 hidden processes, click here to show them.

URLs

Name
IP
Malicious
https://ubuntu.com/blog/microk8s-memory-optimisation
unknown
 clean