Skip to content

Hide Navigation Hide TOC

System Info Discovery via Sysinfo Syscall (b207d563-a1d9-4275-b349-77d1eb55aa6d)

Detects use of the sysinfo system call in Linux, which provides a snapshot of key system statistics such as uptime, load averages, memory usage, and the number of running processes. Malware or reconnaissance tools might leverage sysinfo to fingerprint the system - gathering data to determine if it's a viable target.

Cluster A Galaxy A Cluster B Galaxy B Level
System Info Discovery via Sysinfo Syscall (b207d563-a1d9-4275-b349-77d1eb55aa6d) Sigma-Rules Process Discovery - T1057 (8f4a33ec-8b1f-4b80-a2f6-642b2e479580) Attack Pattern 1
System Info Discovery via Sysinfo Syscall (b207d563-a1d9-4275-b349-77d1eb55aa6d) Sigma-Rules System Information Discovery - T1082 (354a7f88-63fb-41b5-a801-ce3b377b36f1) Attack Pattern 1