393f8b3da8c5abb2d001be30cc2ceb2cc508ca17ed3a218b5cd9baa8c0b6bb48 | Triage

Resubmissions

10-08-2022 19:47

220810-yhsnlagcb6 9

10-08-2022 19:42

220810-ye62taebfp 1

Sharing

General

Target

smtpserver
Size

18KB
Sample

220810-yhsnlagcb6
MD5

a55e70f2e9dd577ce264c3700b05a68d
SHA1

c163aa7be7f48e027385f096ecc2bb7180b7236e
SHA256

393f8b3da8c5abb2d001be30cc2ceb2cc508ca17ed3a218b5cd9baa8c0b6bb48
SHA512

1d906f1b89475a2262484a6ffdfd31be1ab39e651536b7e507eae92e982d73a1009e8f75c973920a14a4dba717439f385d0a26a43765fcfff3ad26e2de211c74

Score

9^/10

discovery linux

Malware Config

Targets

- Target
  
  smtpserver
- Size
  
  18KB
- MD5
  
  a55e70f2e9dd577ce264c3700b05a68d
- SHA1
  
  c163aa7be7f48e027385f096ecc2bb7180b7236e
- SHA256
  
  393f8b3da8c5abb2d001be30cc2ceb2cc508ca17ed3a218b5cd9baa8c0b6bb48
- SHA512
  
  1d906f1b89475a2262484a6ffdfd31be1ab39e651536b7e507eae92e982d73a1009e8f75c973920a14a4dba717439f385d0a26a43765fcfff3ad26e2de211c74
Score

9^/10

discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1