Overview

overview

9

Static

static

7

8794365b31...33.elf

ubuntu-18.04-amd64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    638fa5ec4b4be7f6009b6e87782f1de0.bin

  • Size

    31KB

  • Sample

    230327-byt52aba44

  • MD5

    36b10fb9cff39ca2b98721cdec5d2e21

  • SHA1

    52a073b4f6c777d1d8ec091a5254dd5156382c48

  • SHA256

    08ed351162947315bc5a74b10a67fe6c593f473c5955d28687bc30e846965993

  • SHA512

    5382636c1a01003141a1143c030be2b3576d63ab9a76a1232281b45db42d3fe7fc90ec284c5e969ad3d659c715a136689bd5404b71bd491e9c7b3637c01a1600

  • SSDEEP

    768:DO8KTU+7JTxONyb7hSll6f/OB78MgeBptw8KABf7:DOtUAJdxwlYfKdptw8KAd

Score
9/10
discoverylinuxupx

Malware Config

Targets

    • Target

      8794365b31fc60f1b33ca11a4d2f55e271f96f19937a2cc8e5bfc65ff9f1ff33.elf

    • Size

      32KB

    • MD5

      638fa5ec4b4be7f6009b6e87782f1de0

    • SHA1

      1b838d0f314f41d0a752a3926cdfb9ff7fa637e0

    • SHA256

      8794365b31fc60f1b33ca11a4d2f55e271f96f19937a2cc8e5bfc65ff9f1ff33

    • SHA512

      ed31b9060473aa348c3c8e4cc36f18075b88f027685dd59dc7041fb23bacd4acf5811d4705a303198f5776ee92c9206a2e49eb9e0390546e21caf2f64b1153ea

    • SSDEEP

      768:1lOCUQJ6viHkg0Zk0DJAJ16zvlSi3uWAfUgARsnbcuyD7Uiyqq:PyQJ0yqDmCSrjUg0snouy8Zqq

    Score
    9/10
    discovery

    • Contacts a large (184707) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery
    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

2
T1046

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks