6c3538b35436c3a8965e77b32f1183e5b1dd7274c0b35645f7cd432f8b4695e4 | Triage

Sharing

General

Target

028c57222fee0d0ecdff4efb171a0380.elf
Size

27KB
Sample

221122-1fbneahh72
MD5

028c57222fee0d0ecdff4efb171a0380
SHA1

6a86e2f43f3f0e12a46152d06ef37ebfbf0e2fca
SHA256

6c3538b35436c3a8965e77b32f1183e5b1dd7274c0b35645f7cd432f8b4695e4
SHA512

2971a2771687ee195cf415fdb5cda634f3a418e84598d6106617faf81754774f0c9d629af0b155fa5376573c5eda90c18faa33346338de0ad119c6ca16813db0
SSDEEP

768:ULMB752cU1jSCK0yPj59Qcssx3XMhSCnbcuyD7URQRja:UIfUhSl0kb1saXMMCnouy8Rym

Score

9^/10

discovery linux

Malware Config

Targets

- Target
  
  028c57222fee0d0ecdff4efb171a0380.elf
- Size
  
  27KB
- MD5
  
  028c57222fee0d0ecdff4efb171a0380
- SHA1
  
  6a86e2f43f3f0e12a46152d06ef37ebfbf0e2fca
- SHA256
  
  6c3538b35436c3a8965e77b32f1183e5b1dd7274c0b35645f7cd432f8b4695e4
- SHA512
  
  2971a2771687ee195cf415fdb5cda634f3a418e84598d6106617faf81754774f0c9d629af0b155fa5376573c5eda90c18faa33346338de0ad119c6ca16813db0
- SSDEEP
  
  768:ULMB752cU1jSCK0yPj59Qcssx3XMhSCnbcuyD7URQRja:UIfUhSl0kb1saXMMCnouy8Rym
Score

9^/10

discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1