ca8ffdaa7c5287f9f71a14e23d0acf45532b0192254f69ea40199991c86369a3 | Triage

Sharing

General

Target

ca8ffdaa7c5287f9f71a14e23d0acf45532b0192254f69ea40199991c86369a3
Size

30KB
Sample

220521-p41rnagfb5
MD5

a28a6b93f7762e1ee251fde7187a5aa6
SHA1

bb4e4782f76ee3a5e1c27052f853e0e1a119a3ef
SHA256

ca8ffdaa7c5287f9f71a14e23d0acf45532b0192254f69ea40199991c86369a3
SHA512

cdf45610e7c5efc3abf2d8b5106148c1ba64c72ecb2cf2194a09583d39a5938dbe21d3633188529cc0602554a0865ff4723e3dad52094dba5b6b39a1fcd17496

Score

9^/10

discovery linux

Malware Config

Targets

- Target
  
  ca8ffdaa7c5287f9f71a14e23d0acf45532b0192254f69ea40199991c86369a3
- Size
  
  30KB
- MD5
  
  a28a6b93f7762e1ee251fde7187a5aa6
- SHA1
  
  bb4e4782f76ee3a5e1c27052f853e0e1a119a3ef
- SHA256
  
  ca8ffdaa7c5287f9f71a14e23d0acf45532b0192254f69ea40199991c86369a3
- SHA512
  
  cdf45610e7c5efc3abf2d8b5106148c1ba64c72ecb2cf2194a09583d39a5938dbe21d3633188529cc0602554a0865ff4723e3dad52094dba5b6b39a1fcd17496
Score

9^/10

discovery
- Contacts a large (243191) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1