sora.x86

General
Target

sora.x86

Size

48KB

Sample

220521-vjhy1adefj

Score
10 /10
MD5

361ecc6b1defa4343b0b79153e5ed872

SHA1

f96c5996912ba86681c62af88686aee90bba3d22

SHA256

b51241942d4fec74134418358aa3ca23a6bb826d0b65758d299b21765c18242d

SHA512

ea2fdd477931e6eec57dbf3d74d8b9635e7a825a03561a07be8457ea72b6402fe1cd15ea240c41e34757a7a3966a9ed44fee84cacca44addba7e9533487f2182

Malware Config
Targets
Target

sora.x86

MD5

361ecc6b1defa4343b0b79153e5ed872

Filesize

48KB

Score
9/10
SHA1

f96c5996912ba86681c62af88686aee90bba3d22

SHA256

b51241942d4fec74134418358aa3ca23a6bb826d0b65758d299b21765c18242d

SHA512

ea2fdd477931e6eec57dbf3d74d8b9635e7a825a03561a07be8457ea72b6402fe1cd15ea240c41e34757a7a3966a9ed44fee84cacca44addba7e9533487f2182

Tags

Signatures

  • Contacts a large (177003) amount of remote hosts

    Description

    This may indicate a network scan to discover remotely running services.

    Tags

    TTPs

    Network Service Scanning
  • Creates a large amount of network flows

    Description

    This may indicate a network scan to discover remotely running services.

    Tags

    TTPs

    Network Service Scanning

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Execution
            Exfiltration
              Impact
                Initial Access
                  Lateral Movement
                    Persistence
                      Privilege Escalation
                        Tasks

                        static1

                        10/10

                        behavioral1

                        9/10