f6961f64483ed804649528128fab8bb1cbd03cdd569683fe531014f0b0ef3ed8 | Triage

Sharing

General

Target

f6961f64483ed804649528128fab8bb1cbd03cdd569683fe531014f0b0ef3ed8
Size

106KB
Sample

220521-p2ljysbfdr
MD5

d9ca6f2b9df4f3fefc15b33349c6c7e5
SHA1

973c0b08cf13346d431694b52ffc98277e66cd1a
SHA256

f6961f64483ed804649528128fab8bb1cbd03cdd569683fe531014f0b0ef3ed8
SHA512

26f5aff01bd4efe221bfa7edbf7d860b4c1013fc491adeee34852805140a9376ba2049c48eb733a29559571b3879a1a282e5eefe9b2f0aba36b5306a309caab6

Score

9^/10

discovery linux

Malware Config

Targets

- Target
  
  f6961f64483ed804649528128fab8bb1cbd03cdd569683fe531014f0b0ef3ed8
- Size
  
  106KB
- MD5
  
  d9ca6f2b9df4f3fefc15b33349c6c7e5
- SHA1
  
  973c0b08cf13346d431694b52ffc98277e66cd1a
- SHA256
  
  f6961f64483ed804649528128fab8bb1cbd03cdd569683fe531014f0b0ef3ed8
- SHA512
  
  26f5aff01bd4efe221bfa7edbf7d860b4c1013fc491adeee34852805140a9376ba2049c48eb733a29559571b3879a1a282e5eefe9b2f0aba36b5306a309caab6
Score

9^/10

discovery
- Contacts a large (57553) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1