8c07868f99d4a5b13bb69a4f788dc2cddb857a93a66498ba8594637a20bd10e0 | Triage

Submit
Reports

Overview

overview

9

Static

static

yakov.x86-...47.elf

ubuntu-18.04-amd64

9

Analysis

max time kernel
23632s
max time network
155s
platform
linux_amd64
resource
ubuntu1804-amd64-en-20211208
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-en-20211208kernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
08/09/2022, 05:12

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

yakov.x86-20220908-0147.elf

Resource

ubuntu1804-amd64-en-20211208

ubuntu-18.04-amd64

2 signatures

150 seconds

Report Analysis Logs

General

Target

yakov.x86-20220908-0147.elf
Size

23KB
MD5

15235e653e5abb4e40260288e5d5e0cd
SHA1

671cbc3550294efe4a321b73287f68ca0b303247
SHA256

8c07868f99d4a5b13bb69a4f788dc2cddb857a93a66498ba8594637a20bd10e0
SHA512

49aa11121916381a1cdc1937aaa128aa0222559473d48139ee1e38a5883f4bf5553af18cadbbacfa8d703fa453197477329ddc228c2513b4a508ef5b387a8750
SSDEEP

384:MZYTtV8sACPJPsIsapMQx4p+Iimaxh+QbZSZKlLR7EBKubY/5cN/c+gKRDdCdJuL:Dr8sACPRtEni9sUZ4KFR7EBHbJk+gKR9

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (20167) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Scanning
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Scanning
T1046

Processes

/tmp/yakov.x86-20220908-0147.elf
/tmp/yakov.x86-20220908-0147.elf
1⤵
PID:593

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy