Overview

overview

10

Static

static

10

4211ea48ed...193426

linux_amd64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4211ea48ed72a20173eed590fca7d02a89b6bf8e08026a3d3383084a63193426

  • Size

    98KB

  • Sample

    220708-d95f9agadn

  • MD5

    1df84277b628a49292beda77c1830f80

  • SHA1

    269538ff8ec8f6e9ab4020144f18e3ab192a39e2

  • SHA256

    4211ea48ed72a20173eed590fca7d02a89b6bf8e08026a3d3383084a63193426

  • SHA512

    001269a8c95c127a702f6258366ec8c5b2d43318ef7c1e7cba2cde4879c7a48a27e871da46ebcf7f80fb4893a3b0734f1f96cb7ae13518ae1a65b34a10d5409c

Score
10/10
gafgytmiraimirai_x86coronadiscoverylinux

Malware Config

Targets

    • Target

      4211ea48ed72a20173eed590fca7d02a89b6bf8e08026a3d3383084a63193426

    • Size

      98KB

    • MD5

      1df84277b628a49292beda77c1830f80

    • SHA1

      269538ff8ec8f6e9ab4020144f18e3ab192a39e2

    • SHA256

      4211ea48ed72a20173eed590fca7d02a89b6bf8e08026a3d3383084a63193426

    • SHA512

      001269a8c95c127a702f6258366ec8c5b2d43318ef7c1e7cba2cde4879c7a48a27e871da46ebcf7f80fb4893a3b0734f1f96cb7ae13518ae1a65b34a10d5409c

    Score
    9/10
    discovery

    • Contacts a large (189588) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks