4707ab53c6671bc55750a7b269d625bd6cdc4fde801252a1fe7c2139b884ae03 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bk.x86-20220930-0404.elf
Size

28KB
Sample

220930-enhwssddcj
MD5

9170f40ccda110ef3ca0f38546cda753
SHA1

a8a3f67bb32a8e3472c766283088a41eb412c685
SHA256

4707ab53c6671bc55750a7b269d625bd6cdc4fde801252a1fe7c2139b884ae03
SHA512

35bf485263a52c12c3241a8f3c65c512af0e8373de003d42c7b8799be523ca1852a1d8bd2c52323a029fb9243c6c873ef1225279dde2c0d9e82aebf31558c6a2
SSDEEP

768:hLuLGO+GucXxQol5OB6HL6wf/7UKZWnbcuyD7URQRjZ:ELGO+G1xQW5OBELTH7zgnouy8RyV

Score

9^/10

discovery linux

Malware Config

Targets

- Target
  
  bk.x86-20220930-0404.elf
- Size
  
  28KB
- MD5
  
  9170f40ccda110ef3ca0f38546cda753
- SHA1
  
  a8a3f67bb32a8e3472c766283088a41eb412c685
- SHA256
  
  4707ab53c6671bc55750a7b269d625bd6cdc4fde801252a1fe7c2139b884ae03
- SHA512
  
  35bf485263a52c12c3241a8f3c65c512af0e8373de003d42c7b8799be523ca1852a1d8bd2c52323a029fb9243c6c873ef1225279dde2c0d9e82aebf31558c6a2
- SSDEEP
  
  768:hLuLGO+GucXxQol5OB6HL6wf/7UKZWnbcuyD7URQRjZ:ELGO+G1xQW5OBELTH7zgnouy8RyV
Score

9^/10

discovery
- Contacts a large (46479) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1