dd73b5d84fb3f82721d3cc945fb092c1ec134830a6c5bce81fc82b466d9edc81 | Triage

Sharing

General

Target

z3hir.x86
Size

32KB
Sample

220820-z56dmsbcg9
MD5

026179113bb419cb5295eb6ca0703342
SHA1

cdf16207a9333080c3815072d29b98a0da9a72aa
SHA256

dd73b5d84fb3f82721d3cc945fb092c1ec134830a6c5bce81fc82b466d9edc81
SHA512

09dd0dd77ab19924c41566c72cc0481f74a55c2b33d6c8b94ca76ae0070ced44a5a7f0f2351736c820fb5976589d6076abbcc6c2bca8ce885eb204f16ef7803a
SSDEEP

768:PC1F8gSLALV1eH3Tg9EG3ZlZKExI3oNPf8xn2IbynbcuyD7UHQRj+:PC11tLL7HlZKEx9N8Tynouy8HyS

Score

9^/10

discovery linux

Malware Config

Targets

- Target
  
  z3hir.x86
- Size
  
  32KB
- MD5
  
  026179113bb419cb5295eb6ca0703342
- SHA1
  
  cdf16207a9333080c3815072d29b98a0da9a72aa
- SHA256
  
  dd73b5d84fb3f82721d3cc945fb092c1ec134830a6c5bce81fc82b466d9edc81
- SHA512
  
  09dd0dd77ab19924c41566c72cc0481f74a55c2b33d6c8b94ca76ae0070ced44a5a7f0f2351736c820fb5976589d6076abbcc6c2bca8ce885eb204f16ef7803a
- SSDEEP
  
  768:PC1F8gSLALV1eH3Tg9EG3ZlZKExI3oNPf8xn2IbynbcuyD7UHQRj+:PC11tLL7HlZKEx9N8Tynouy8HyS
Score

9^/10

discovery
- Contacts a large (20280) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1