Overview

overview

10

Static

static

10

2593a96117...ed.elf

ubuntu-18.04-amd64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2593a961173f1e8210a161f4e6673eed.elf

  • Size

    54KB

  • Sample

    230308-wvax7sfc6x

  • MD5

    2593a961173f1e8210a161f4e6673eed

  • SHA1

    666179dd36626ddf88c361a4a7f10d16fea1a9b0

  • SHA256

    31031bdc0304212a551f0e8f5aa1bf2e3091aff0447d48f328295914f7b742b7

  • SHA512

    92f879da80921209d364afa1afbadce06e4261426b915a958c4a06cce432a3215cca738c777c544df21f8d2918a9a7cdc6e97404c5acf864094dc72841fc6d35

  • SSDEEP

    1536:FEytfbaM12r8ZBG6rMnWR+bxTwSoaEDrkMML:FEytfbaM1zAZnWQbhT3Esb

Score
10/10
miraidiscoverylinux

Malware Config

Targets

    • Target

      2593a961173f1e8210a161f4e6673eed.elf

    • Size

      54KB

    • MD5

      2593a961173f1e8210a161f4e6673eed

    • SHA1

      666179dd36626ddf88c361a4a7f10d16fea1a9b0

    • SHA256

      31031bdc0304212a551f0e8f5aa1bf2e3091aff0447d48f328295914f7b742b7

    • SHA512

      92f879da80921209d364afa1afbadce06e4261426b915a958c4a06cce432a3215cca738c777c544df21f8d2918a9a7cdc6e97404c5acf864094dc72841fc6d35

    • SSDEEP

      1536:FEytfbaM12r8ZBG6rMnWR+bxTwSoaEDrkMML:FEytfbaM1zAZnWQbhT3Esb

    Score
    9/10
    discovery

    • Contacts a large (37370) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Reads runtime system information

      Reads data from /proc virtual filesystem.

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks