f2e729a88bd2cc2484b6ef48f3928f71557902b9f3e8aef812d63bd9a51ad975 | Triage

Submit
Reports

Overview

overview

Static

static

f2e729a88b...1ad975

ubuntu-18.04-amd64

9

Analysis

max time kernel
19727s
max time network
155s
platform
linux_amd64
resource
ubuntu1804-amd64-en-20211208
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-en-20211208kernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
24-07-2022 23:58

Sharing

Static task

static1

gafgyt mirai mirai_x86corona

6 signatures

Behavioral task

behavioral1

Sample

f2e729a88bd2cc2484b6ef48f3928f71557902b9f3e8aef812d63bd9a51ad975

Resource

ubuntu1804-amd64-en-20211208

ubuntu-18.04-amd64

2 signatures

150 seconds

Report Analysis Logs

General

Target

f2e729a88bd2cc2484b6ef48f3928f71557902b9f3e8aef812d63bd9a51ad975
Size

102KB
MD5

8d9b36df1d02f76a660a427439d591bf
SHA1

d4672257bc0883179e59660845baad4de21f6ef1
SHA256

f2e729a88bd2cc2484b6ef48f3928f71557902b9f3e8aef812d63bd9a51ad975
SHA512

6b689ba86b4457c8328070fc8a5957d32714ebf36c00b6b3957bd5733adb42a53fbc3561ffcab05af310c88d21dc8a69f135839a5b3e99f995d2d78b71bcd892

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (23998) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Scanning
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Scanning
T1046

Processes

/tmp/f2e729a88bd2cc2484b6ef48f3928f71557902b9f3e8aef812d63bd9a51ad975
/tmp/f2e729a88bd2cc2484b6ef48f3928f71557902b9f3e8aef812d63bd9a51ad975
1⤵
PID:577

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy