General
-
Target
595d21d03f4f45ec14d8560ca18b9719
-
Size
116KB
-
Sample
230304-xxgdfaea5y
-
MD5
595d21d03f4f45ec14d8560ca18b9719
-
SHA1
4207c094b3a17e9ff6362bf0d97cc2c65ba459e8
-
SHA256
6a08ac7fc4891bac110ba648cc1fbe810ae9fd08bb5a584ee1a7996362a923c5
-
SHA512
a7c1e9570bf522cb5a43ea1a0e3c4b06ef50b41a6777c4af79530507d27d483589ad4250f203e12abbbefe30b1eeedaeefc52117fb5ef88ff28dee1182ac2a23
-
SSDEEP
3072:idwracAAviNmLpMQ1xv5hKHKSrbqlAdmyDQUJ1UX4Tn:SwraFgikxv5hKHKnlAdmyDQUJ1a4Tn
Behavioral task
behavioral1
Sample
595d21d03f4f45ec14d8560ca18b9719
Resource
debian9-armhf-en-20211208
Malware Config
Targets
-
-
Target
595d21d03f4f45ec14d8560ca18b9719
-
Size
116KB
-
MD5
595d21d03f4f45ec14d8560ca18b9719
-
SHA1
4207c094b3a17e9ff6362bf0d97cc2c65ba459e8
-
SHA256
6a08ac7fc4891bac110ba648cc1fbe810ae9fd08bb5a584ee1a7996362a923c5
-
SHA512
a7c1e9570bf522cb5a43ea1a0e3c4b06ef50b41a6777c4af79530507d27d483589ad4250f203e12abbbefe30b1eeedaeefc52117fb5ef88ff28dee1182ac2a23
-
SSDEEP
3072:idwracAAviNmLpMQ1xv5hKHKSrbqlAdmyDQUJ1UX4Tn:SwraFgikxv5hKHKnlAdmyDQUJ1a4Tn
Score7/10-
Reads system routing table
Gets active network interfaces from /proc virtual filesystem.
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Reads system network configuration
Uses contents of /proc filesystem to enumerate network settings.
-