ff09cf7dfd1dc1466815d4df098065510eec504099ebb02b830309067031fe04 | Triage

Submit
Reports

Overview

overview

9

Static

static

ff09cf7dfd...lf.x86

ubuntu-18.04-amd64

9

Analysis

max time kernel
20900s
max time network
153s
platform
linux_amd64
resource
ubuntu1804-amd64-en-20211208
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-en-20211208kernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
07-08-2022 14:16

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ff09cf7dfd1dc1466815d4df098065510eec504099ebb02b830309067031fe04.elf.x86

Resource

ubuntu1804-amd64-en-20211208

ubuntu-18.04-amd64

2 signatures

150 seconds

Report Analysis Logs

General

Target

ff09cf7dfd1dc1466815d4df098065510eec504099ebb02b830309067031fe04.elf.x86
Size

83KB
MD5

5d7d2618e09ea3c84f5a484553e0ea65
SHA1

679010f52909c909bde9aa34645c5ac0044df453
SHA256

ff09cf7dfd1dc1466815d4df098065510eec504099ebb02b830309067031fe04
SHA512

a83b105aa5b2489272f8a546582227e29806409e68afdeee2b7e6a2237e09859b929ed18be98a1d9af27c97e26bcd7547571a9bd439c74400124dd19da321975

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (9472) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Scanning
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Scanning
T1046

Processes

/tmp/ff09cf7dfd1dc1466815d4df098065510eec504099ebb02b830309067031fe04.elf.x86
/tmp/ff09cf7dfd1dc1466815d4df098065510eec504099ebb02b830309067031fe04.elf.x86
1⤵
PID:576

Network

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy