4fbeb734c95e3026225128e2433cae46d33c307bdeef60a7def86d30d80c50ff | Triage

Submit
Reports

Overview

overview

Static

static

4fbeb734c9...0c50ff

ubuntu-18.04-amd64

9

Analysis

max time kernel
19741s
max time network
155s
platform
linux_amd64
resource
ubuntu1804-amd64-en-20211208
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-en-20211208kernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
25-07-2022 04:20

Sharing

Static task

static1

gafgyt mirai mirai_x86corona

6 signatures

Behavioral task

behavioral1

Sample

4fbeb734c95e3026225128e2433cae46d33c307bdeef60a7def86d30d80c50ff

Resource

ubuntu1804-amd64-en-20211208

ubuntu-18.04-amd64

2 signatures

150 seconds

Report Analysis Logs

General

Target

4fbeb734c95e3026225128e2433cae46d33c307bdeef60a7def86d30d80c50ff
Size

124KB
MD5

29a7f9ab5437f0fe8e51124eee0b9fea
SHA1

19167457cda458b2146b082d20de3e028a50fe86
SHA256

4fbeb734c95e3026225128e2433cae46d33c307bdeef60a7def86d30d80c50ff
SHA512

41fba3e1bfd06e6465397ee59f5f93993f8fa1b549931ff044d2cce693ae343d8d161e4f30aa7424f73d6b43fd4931040b1e0612e6a177467dbb565a5245b275

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (69082) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Scanning
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Scanning
T1046

Processes

/tmp/4fbeb734c95e3026225128e2433cae46d33c307bdeef60a7def86d30d80c50ff
/tmp/4fbeb734c95e3026225128e2433cae46d33c307bdeef60a7def86d30d80c50ff
1⤵
PID:593

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy