9dd3126f3cceac99e6e85f9c1153a3c32a2ecb298b9f29b892e721b9cbe9fc00 | Triage

Submit
Reports

Overview

overview

9

Static

static

7

136368807e...a9.elf

debian-9-mipsel

9

Sharing

General

Target

136368807efb3f4f3dfca5c03f3faba9.elf
Size

33KB
Sample

230331-ywjmvada85
MD5

136368807efb3f4f3dfca5c03f3faba9
SHA1

a88153e784c39351d98184a16c69856f41bda034
SHA256

9dd3126f3cceac99e6e85f9c1153a3c32a2ecb298b9f29b892e721b9cbe9fc00
SHA512

9b1dce416f821b66a9244b0969139095f321a19a7fdec09e52b235d45d7ca090a0a2f3a3fa952872e6fc79493c2daeb17c36021702cbd1659aee5aadbdf7dd3f
SSDEEP

768:+PS05IB9DGK8XcCWuRjG/4ioTvvf2OvO3GE7khmWe:+PSb9Dj8XRWOu7+f2RFkQ

Score

9^/10

discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

136368807efb3f4f3dfca5c03f3faba9.elf

Resource

debian9-mipsel-en-20211208

debian-9-mipsel

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  136368807efb3f4f3dfca5c03f3faba9.elf
- Size
  
  33KB
- MD5
  
  136368807efb3f4f3dfca5c03f3faba9
- SHA1
  
  a88153e784c39351d98184a16c69856f41bda034
- SHA256
  
  9dd3126f3cceac99e6e85f9c1153a3c32a2ecb298b9f29b892e721b9cbe9fc00
- SHA512
  
  9b1dce416f821b66a9244b0969139095f321a19a7fdec09e52b235d45d7ca090a0a2f3a3fa952872e6fc79493c2daeb17c36021702cbd1659aee5aadbdf7dd3f
- SSDEEP
  
  768:+PS05IB9DGK8XcCWuRjG/4ioTvvf2OvO3GE7khmWe:+PSb9Dj8XRWOu7+f2RFkQ
Score

9^/10

discovery
- Contacts a large (44149) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Modifies the Watchdog daemon
  Malware like Mirai modify the Watchdog to prevent it restarting an infected system.
- Reads runtime system information
  Reads data from /proc virtual filesystem.
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy