cbr.x86

General
Target

cbr.x86

Size

53KB

Sample

220521-taf8dadcck

Score
9 /10
MD5

6ee7f2c3f3d9a99c3c7f377087a69e0e

SHA1

8a06ea2d85d6bd914b6a39bcc13ef73732273ff1

SHA256

b4d5f505404d28029c23bb05d720f78e75e8f072df2d9fd2ca169db785ad60ef

SHA512

3d82ecdf254fcbce0cf661ec81f37a8afe02f22f8b8e0662cd1ce37eb8e109e815aaad5c88907a6fb56a6d5a9c117ba6e7b2c2dbe04a0addb2a091ddbc9838d2

Malware Config
Targets
Target

cbr.x86

MD5

6ee7f2c3f3d9a99c3c7f377087a69e0e

Filesize

53KB

Score
9/10
SHA1

8a06ea2d85d6bd914b6a39bcc13ef73732273ff1

SHA256

b4d5f505404d28029c23bb05d720f78e75e8f072df2d9fd2ca169db785ad60ef

SHA512

3d82ecdf254fcbce0cf661ec81f37a8afe02f22f8b8e0662cd1ce37eb8e109e815aaad5c88907a6fb56a6d5a9c117ba6e7b2c2dbe04a0addb2a091ddbc9838d2

Tags

Signatures

  • Contacts a large (108682) amount of remote hosts

    Description

    This may indicate a network scan to discover remotely running services.

    Tags

    TTPs

    Network Service Scanning
  • Creates a large amount of network flows

    Description

    This may indicate a network scan to discover remotely running services.

    Tags

    TTPs

    Network Service Scanning
  • Reads runtime system information

    Description

    Reads data from /proc virtual filesystem.

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Execution
            Exfiltration
              Impact
                Initial Access
                  Lateral Movement
                    Persistence
                      Privilege Escalation
                        Tasks

                        static1

                        behavioral1

                        9/10