63a5109b1463637cfc560ce9d0fd5a557e807e5f50dd920e68422aafe503cc49 | Triage

Submit
Reports

Overview

overview

Static

static

63a5109b14...03cc49

ubuntu-18.04-amd64

9

Analysis

max time kernel
20313s
max time network
155s
platform
linux_amd64
resource
ubuntu1804-amd64-en-20211208
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-en-20211208kernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
31-07-2022 11:34

Sharing

Static task

static1

gafgyt mirai mirai_x86corona

6 signatures

Behavioral task

behavioral1

Sample

63a5109b1463637cfc560ce9d0fd5a557e807e5f50dd920e68422aafe503cc49

Resource

ubuntu1804-amd64-en-20211208

ubuntu-18.04-amd64

2 signatures

150 seconds

Report Analysis Logs

General

Target

63a5109b1463637cfc560ce9d0fd5a557e807e5f50dd920e68422aafe503cc49
Size

124KB
MD5

a8bc57658193480a872df2e836c78756
SHA1

f88a14b786ba9251a83f479009a54cac6b2568d1
SHA256

63a5109b1463637cfc560ce9d0fd5a557e807e5f50dd920e68422aafe503cc49
SHA512

af84cc14e1d96d950cd11e00b5a023e6e8f8e5c738df0d425758f67dcec41c813291ce4184414c05f36c618313f247d965732b3f1b9cca335e474e7446ac96a0

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (69088) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Scanning
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Scanning
T1046

Processes

/tmp/63a5109b1463637cfc560ce9d0fd5a557e807e5f50dd920e68422aafe503cc49
/tmp/63a5109b1463637cfc560ce9d0fd5a557e807e5f50dd920e68422aafe503cc49
1⤵
PID:593

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy