cc4479b28097895c93fd3649afd5072761268cd09baafb41d1fa5050f0fad910 | Triage

Submit
Reports

Overview

overview

6

Static

static

1

boat.x86.elf

ubuntu-18.04-amd64

6

Analysis

max time kernel
0s
max time network
155s
platform
linux_amd64
resource
ubuntu1804-amd64-en-20211208
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-en-20211208kernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
31-03-2023 19:03

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

boat.x86.elf

Resource

ubuntu1804-amd64-en-20211208

ubuntu-18.04-amd64

1 signatures

150 seconds

Report Analysis Logs

General

Target

boat.x86.elf
Size

20KB
MD5

9774c70b867ab1ceda5d227b97a1b35a
SHA1

7ed2647297a4ec2d09661af679a29291edefe3d4
SHA256

cc4479b28097895c93fd3649afd5072761268cd09baafb41d1fa5050f0fad910
SHA512

ab61be5c67fc697bec5527d90fc18f3eefe3f46e5c67f51b55b6a4b79ef2698dae3c98bb038354f37c0a1fa86d4f7433565acce8baee7ce4ebf1e53f6c3cde35
SSDEEP

384:f2g8P4B6T8JydfLJ2O/eVKXR+g4FCL6slE1K/obUhvR+rc:Ogo4B6h1EKhe0/lBwbUxQ

Score

6^/10

discovery

Malware Config

Signatures

Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Scanning
T1046

Processes

/tmp/boat.x86.elf
/tmp/boat.x86.elf
1⤵
PID:581

Network

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy