4410b6bd156bc7e059e105d22c862094c64aa3583f1bfb97b68eb18f973fab28 | Triage

Submit
Reports

Overview

overview

9

Static

static

1

ec8ebc787a...08.elf

ubuntu-18.04-amd64

9

Analysis

max time kernel
7211s
max time network
153s
platform
ubuntu-18.04_amd64
resource
ubuntu1804-amd64-20221111-en
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-20221111-enkernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
03/02/2023, 05:12

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ec8ebc787a01276ff98ba9153c9a3c08.elf

Resource

ubuntu1804-amd64-20221111-en

ubuntu-18.04-amd64

2 signatures

150 seconds

Report Analysis Logs

General

Target

ec8ebc787a01276ff98ba9153c9a3c08.elf
Size

29KB
MD5

ec8ebc787a01276ff98ba9153c9a3c08
SHA1

252d364ed2be3d63bc4f76c6ae476c0aa7441ca5
SHA256

4410b6bd156bc7e059e105d22c862094c64aa3583f1bfb97b68eb18f973fab28
SHA512

c2007e0f6c74c25e720ab408b65db27fec19960836ef284578159f540a9a0d8f60b39301474c64a4b7182636b8d43f80952e2e3a74dbd038e8e08a1041c46c77
SSDEEP

768:EN8fWlfoQmQAXV7EAQciiRcrHKOu3AfqD:YMNXFl7NNnOI

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (20096) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Scanning
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Scanning
T1046

Processes

/tmp/ec8ebc787a01276ff98ba9153c9a3c08.elf
/tmp/ec8ebc787a01276ff98ba9153c9a3c08.elf
1⤵
PID:617

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy