Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
ntpd
|
ELF 32-bit MSB executable, MIPS, MIPS-I version 1 (SYSV), statically linked, not stripped
|
initial sample
|
||
/tmp/qemu-open.xqNPAW (deleted)
|
ASCII text
|
dropped
|
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
/tmp/ntpd
|
/tmp/ntpd
|
||
/tmp/ntpd
|
n/a
|
||
/tmp/ntpd
|
n/a
|
||
/tmp/ntpd
|
n/a
|
||
/tmp/ntpd
|
n/a
|
||
/tmp/ntpd
|
n/a
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
http://45.95.55.12/bins.sh;
|
unknown
|