MB-58602c7eac4ff6033cdc9303b709d010770d15ec771870ae32009a42a85ef7de high

Description

File type: elf. Size: 135048 bytes. Tags: elf. Reporter: abuse_ch. First seen: 2026-06-13 15:09:45.

• How do I fix CVE-2026-31431 on Ubuntu 24.04 LTS?
  web:askubuntu.com

  9 Update: Kernel 6.8.-117.117 is released now and features a kernel-level fix for CVE-2026-31431. While the website may be down, the security email list continues to work apparently and they have emailed about a mitigation there in an email from 30.04.2026 18:06 CET. The issue should be mitigated for now thanks to USN-8226-1 and USN-8226-2.

  2026-06-19 13:42 UTC
• Dirty Frag (CVE-2026-43284, CVE-2026-43500): Mitigation and Kernel ...
  web:blog.cloudlinux.com

  Dirty Frag is a Linux kernel local privilege escalation in the xfrm subsystem. Apply the mitigation now while patched kernels and KernelCare livepatches are prepared.

  2026-06-19 13:42 UTC
• CVE-2026-31431 ("Copy Fail"): What You Need to Know
  web:blog.toolslib.net

  CVE-2026-31431 ("Copy Fail") is a critical Linux kernel flaw allowing privilege escalation and container escape. Discover impact, risk, and how to patch or mitigate it quickly.

  2026-06-19 13:42 UTC
• Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and ...
  web:radar.offseq.com

  This Red Hat security advisory (RHSA-2026:22934) covers a bug fix and enhancement update for Red Hat Hardened Images RPMs, specifically updating multiple Rust-related packages to version 1.96.0-1.hum1 across several architectures (aarch64, x86_64, noarch).

  2026-06-19 13:42 UTC
• CVE-2026-31431 | Ubuntu
  web:ubuntu.com

  Ubuntu is an open source software operating system that runs from the desktop, to the cloud, to all your internet connected things.

  2026-06-19 13:42 UTC
• Linux Analysis Report iran.x86_64.elf
  web:www.joesandbox.com

  Signatures Antivirus / Scanner detection for submitted sample Malicious sample detected (through community Yara rule) Multi AV Scanner detection for submitted file Sample deletes itself Detected TCP or UDP traffic on non-standard ports Enumerates processes within the "proc" file system Executes the "rm" command used to delete files or directories Sample has stripped symbol table Yara signature ...

  2026-06-19 13:42 UTC
• Linux Analysis Report iran.x86_64.elf
  web:www.joesandbox.com

  Signatures Malicious sample detected (through community Yara rule) Multi AV Scanner detection for submitted file Sample deletes itself Sample is packed with UPX Detected TCP or UDP traffic on non-standard ports ELF contains segments with high entropy indicating compressed/encrypted content Enumerates processes within the "proc" file system Sample contains only a LOAD segment without any ...

  2026-06-19 13:42 UTC
• CVE-2026-31431 Copy Fail Explained: IOCs and Patch Guide
  web:www.kodemsecurity.com

  CVE-2026-31431, the Copy Fail Linux kernel LPE, lets authenticated users gain root. See affected kernels, exploit details, IOCs and patches.

  2026-06-19 13:42 UTC
• CVE-2026-31431: How Red Hat Advanced Cluster Security and Red Hat ...
  web:www.redhat.com

  Learn about CVE-2026-31431, a Linux kernel issue affecting Red Hat OpenShift containers. Discover how Red Hat Advanced Cluster Security can help detect and respond to this exploit, and find out about remediation steps.

  2026-06-19 13:42 UTC
• [RFC PATCH] x86/bugs: Remove 'force' options for retbleed/ITS
  web:www.spinics.net

  Command line options which force-enable a mitigation on an unaffected processor provide arguably no security value but do create the potential for problems due to the increased set of mitigation interactions.

  2026-06-19 13:42 UTC

Indicators of Compromise (3)

Each indicator is enriched from the IOC database, threat-intel feed corroboration (Threat Hunt) and VirusTotal. Click one to expand.

References (1)

• MalwareBazaar sample page Abuse.ch

  File type: elf. Size: 135048 bytes. Tags: elf. Reporter: abuse_ch. First seen: 2026-06-13 15:09:45.

Only Available for Registered Users. Sign in to view.