dec9f1efe46ced73148e99ddf6400efc197ed084911bc3efd2ed1e674acaf44a | Triage

Submit
Reports

Overview

overview

9

Static

static

7

sora.x86.elf

ubuntu-18.04-amd64

9

Sharing

General

Target

sora.x86.elf
Size

27KB
Sample

230328-lghe1sbh5w
MD5

a084d44d409dc199ea27e59e2b9cc817
SHA1

a32ff2435b557b0ee77ed88256330e3884e666d8
SHA256

dec9f1efe46ced73148e99ddf6400efc197ed084911bc3efd2ed1e674acaf44a
SHA512

d9351de32a96bbc8dbf4c6be4cccdef90018a43dcb5845a4bb5acf7bdb367914c57c353409b036bb1e316e2eb5086a5d3d22e111ce6d8994eaa76ed018113922
SSDEEP

384:MRG/9WXUx5+bkbRaliVErjrL9VD9jPwrSaf5dwapDyCTYHHJC8oytPFnAqV/LlTl:/5+Kcrb9VDJe5FLTYTlPFnz/sPo4r2

Score

9^/10

discovery linux upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

sora.x86.elf

Resource

ubuntu1804-amd64-en-20211208

ubuntu-18.04-amd64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  sora.x86.elf
- Size
  
  27KB
- MD5
  
  a084d44d409dc199ea27e59e2b9cc817
- SHA1
  
  a32ff2435b557b0ee77ed88256330e3884e666d8
- SHA256
  
  dec9f1efe46ced73148e99ddf6400efc197ed084911bc3efd2ed1e674acaf44a
- SHA512
  
  d9351de32a96bbc8dbf4c6be4cccdef90018a43dcb5845a4bb5acf7bdb367914c57c353409b036bb1e316e2eb5086a5d3d22e111ce6d8994eaa76ed018113922
- SSDEEP
  
  384:MRG/9WXUx5+bkbRaliVErjrL9VD9jPwrSaf5dwapDyCTYHHJC8oytPFnAqV/LlTl:/5+Kcrb9VDJe5FLTYTlPFnz/sPo4r2
Score

9^/10

discovery
- Contacts a large (174984) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy