56fb2e5b8e8b9b50a55e5aa6657b954dd4a7b8d8ce42fa50b0a07a6cca3337b2 | Triage

Sharing

General

Target

ak.x86-20220923-0709.elf
Size

28KB
Sample

220923-hyt9cshdeq
MD5

fbf6d5e285f8f91fe0a0ccbb4615e938
SHA1

2bcec472c23664c113529c2abb30b34cc5e5a109
SHA256

56fb2e5b8e8b9b50a55e5aa6657b954dd4a7b8d8ce42fa50b0a07a6cca3337b2
SHA512

302ed8ee629b2fdb37800a289409ff26df0b9c06140eef230ede39ee0fab9435c7839ddeae2ccf4733786dff776c91d97ca134d24adc551e9cc721b8012acc1e
SSDEEP

768:u87ZwYyHiMwqE9FR5Oh43DwPnbcuyD7URQRji:uIZICfqCsPnouy8RyO

Score

9^/10

discovery linux

Malware Config

Targets

- Target
  
  ak.x86-20220923-0709.elf
- Size
  
  28KB
- MD5
  
  fbf6d5e285f8f91fe0a0ccbb4615e938
- SHA1
  
  2bcec472c23664c113529c2abb30b34cc5e5a109
- SHA256
  
  56fb2e5b8e8b9b50a55e5aa6657b954dd4a7b8d8ce42fa50b0a07a6cca3337b2
- SHA512
  
  302ed8ee629b2fdb37800a289409ff26df0b9c06140eef230ede39ee0fab9435c7839ddeae2ccf4733786dff776c91d97ca134d24adc551e9cc721b8012acc1e
- SSDEEP
  
  768:u87ZwYyHiMwqE9FR5Oh43DwPnbcuyD7URQRji:uIZICfqCsPnouy8RyO
Score

9^/10

discovery
- Contacts a large (46706) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1