Overview

overview

10

Static

static

10

5a67328f3b...78b2bc

ubuntu-18.04-amd64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5a67328f3b0d191f22e0f65fba08156b886fdd45acf4b28f74e0b78c8878b2bc

  • Size

    111KB

  • Sample

    220802-d7y7fshcd8

  • MD5

    a684550231cbd0ca99f9edd9a24b4ad2

  • SHA1

    753e48f8212247ef770d05c267ffc76fecc66564

  • SHA256

    5a67328f3b0d191f22e0f65fba08156b886fdd45acf4b28f74e0b78c8878b2bc

  • SHA512

    7b2fe3b66d7af2454a726e014f93f409b9c8b329e0ff6cfa7929da3455cb9064ba41bfd47d50ae260d2b5a78451db2c31c7453e5683cf96a9ac79f96849bb2ca

Score
10/10
gafgytmiraimirai_x86coronadiscoverylinux

Malware Config

Targets

    • Target

      5a67328f3b0d191f22e0f65fba08156b886fdd45acf4b28f74e0b78c8878b2bc

    • Size

      111KB

    • MD5

      a684550231cbd0ca99f9edd9a24b4ad2

    • SHA1

      753e48f8212247ef770d05c267ffc76fecc66564

    • SHA256

      5a67328f3b0d191f22e0f65fba08156b886fdd45acf4b28f74e0b78c8878b2bc

    • SHA512

      7b2fe3b66d7af2454a726e014f93f409b9c8b329e0ff6cfa7929da3455cb9064ba41bfd47d50ae260d2b5a78451db2c31c7453e5683cf96a9ac79f96849bb2ca

    Score
    9/10
    discovery

    • Contacts a large (85002) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery
    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

2
T1046

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks