0bb4a239a89fe82cb64543e364864a5f1206b4cd110902438bbe5baa6ad142ea | Triage

Sharing

General

Target

fe62daf76b1632bbd235ec33528195ca
Size

40KB
Sample

220817-k5la5sgdh5
MD5

fe62daf76b1632bbd235ec33528195ca
SHA1

c169848923a27a675853075c5069bdff3e3d52ef
SHA256

0bb4a239a89fe82cb64543e364864a5f1206b4cd110902438bbe5baa6ad142ea
SHA512

81e71a0866ac4d07fa6e2040b8f24853a3699f469a77b739071926076e151643a8cb6e7e832e027a85ec14c12ce0682a64395cb26fc9c93ef7210f9889f47c81
SSDEEP

768:9EsYIvmJI2iqccmLtDgwYmMlvdFSNGglNLModl7THdvl:93ZnlMlvdFSNfKK39v

Score

9^/10

discovery linux

Malware Config

Targets

- Target
  
  fe62daf76b1632bbd235ec33528195ca
- Size
  
  40KB
- MD5
  
  fe62daf76b1632bbd235ec33528195ca
- SHA1
  
  c169848923a27a675853075c5069bdff3e3d52ef
- SHA256
  
  0bb4a239a89fe82cb64543e364864a5f1206b4cd110902438bbe5baa6ad142ea
- SHA512
  
  81e71a0866ac4d07fa6e2040b8f24853a3699f469a77b739071926076e151643a8cb6e7e832e027a85ec14c12ce0682a64395cb26fc9c93ef7210f9889f47c81
- SSDEEP
  
  768:9EsYIvmJI2iqccmLtDgwYmMlvdFSNGglNLModl7THdvl:93ZnlMlvdFSNfKK39v
Score

9^/10

discovery
- Contacts a large (23528) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1