4957927c340251d2461b5264228097cdb558a1e50029beb343f70105996cd89f | Triage

Sharing

General

Target

4957927c340251d2461b5264228097cdb558a1e50029beb343f70105996cd89f
Size

30KB
Sample

220521-xqp21acdb2
MD5

2aab5496cdf496ef9788388aa9119d93
SHA1

f186fdb1030c6986d1e3e2e70de80088de6e9361
SHA256

4957927c340251d2461b5264228097cdb558a1e50029beb343f70105996cd89f
SHA512

f339ff75ec6d999c0d0c77a524f5e4aa6b87397d1b715ca2df19d1e266afa6fa8c6459428d83698cdaeef776003869b3a53778e4e25cbcd31c406856e0fb1124

Score

9^/10

discovery linux

Malware Config

Targets

- Target
  
  4957927c340251d2461b5264228097cdb558a1e50029beb343f70105996cd89f
- Size
  
  30KB
- MD5
  
  2aab5496cdf496ef9788388aa9119d93
- SHA1
  
  f186fdb1030c6986d1e3e2e70de80088de6e9361
- SHA256
  
  4957927c340251d2461b5264228097cdb558a1e50029beb343f70105996cd89f
- SHA512
  
  f339ff75ec6d999c0d0c77a524f5e4aa6b87397d1b715ca2df19d1e266afa6fa8c6459428d83698cdaeef776003869b3a53778e4e25cbcd31c406856e0fb1124
Score

9^/10

discovery
- Contacts a large (20207) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1