Overview

overview

10

Static

static

10

8de260279c...116872

ubuntu-18.04-amd64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8de260279c7768fd8907a87364116872

  • Size

    48KB

  • Sample

    220816-redxpsche8

  • MD5

    8de260279c7768fd8907a87364116872

  • SHA1

    7bcb7498f660dc0eba45b1e8f9472f626a7455d2

  • SHA256

    7e9b28c2391a23777a105056bd0cdb7a854fec9964d45b1759471d0074a8341b

  • SHA512

    e350689ec8871cdfee7cc4c5af3d8fe56b930b165d6e4de8df82dd4e62226962de74950e1967da67d41f8cee9ad11d3d8f338255a0375232b7373458b75fdd00

  • SSDEEP

    1536:9VMc4wAZL4FKwITTEEpvOnB4EXw4NeoKpxOoi:9VMHPZLaKZEEwB4o7Neo+I7

Score
10/10
miraidiscoverylinux

Malware Config

Targets

    • Target

      8de260279c7768fd8907a87364116872

    • Size

      48KB

    • MD5

      8de260279c7768fd8907a87364116872

    • SHA1

      7bcb7498f660dc0eba45b1e8f9472f626a7455d2

    • SHA256

      7e9b28c2391a23777a105056bd0cdb7a854fec9964d45b1759471d0074a8341b

    • SHA512

      e350689ec8871cdfee7cc4c5af3d8fe56b930b165d6e4de8df82dd4e62226962de74950e1967da67d41f8cee9ad11d3d8f338255a0375232b7373458b75fdd00

    • SSDEEP

      1536:9VMc4wAZL4FKwITTEEpvOnB4EXw4NeoKpxOoi:9VMHPZLaKZEEwB4o7Neo+I7

    Score
    9/10
    discovery

    • Contacts a large (23516) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Writes file to tmp directory

      Malware often drops required files in the /tmp directory.

    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

2
T1046

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks