43c16e973f45f57b2a39a2053ae4549d16d287bbde12937f1537c31826218178 | Triage

Sharing

General

Target

43c16e973f45f57b2a39a2053ae4549d16d287bbde12937f1537c31826218178
Size

77KB
Sample

220521-p18cbsbfcm
MD5

8123cbaf931325b83136f38a9f1c0be7
SHA1

5b9e70a607acd21df6f1399389ade04c7f5ee43d
SHA256

43c16e973f45f57b2a39a2053ae4549d16d287bbde12937f1537c31826218178
SHA512

99e27c66779fba94bbd80f5f87927f0d51ac734dd837594609d6ddd79b0df5e2770ab097c53cb28145b1071764551d37018ce54d6d658e59772f3ae3b5b62c74

Score

9^/10

discovery linux

Malware Config

Targets

- Target
  
  43c16e973f45f57b2a39a2053ae4549d16d287bbde12937f1537c31826218178
- Size
  
  77KB
- MD5
  
  8123cbaf931325b83136f38a9f1c0be7
- SHA1
  
  5b9e70a607acd21df6f1399389ade04c7f5ee43d
- SHA256
  
  43c16e973f45f57b2a39a2053ae4549d16d287bbde12937f1537c31826218178
- SHA512
  
  99e27c66779fba94bbd80f5f87927f0d51ac734dd837594609d6ddd79b0df5e2770ab097c53cb28145b1071764551d37018ce54d6d658e59772f3ae3b5b62c74
Score

9^/10

discovery
- Contacts a large (111818) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1