351c03ea5f27b9cd0fce9b5502a08e62ee647b1adc6cdf56633bd1d958696552 | Triage

Submit
Reports

Overview

overview

9

Static

static

7

bfcc7d2ed1...29bd51

ubuntu-18.04-amd64

9

Analysis

max time kernel
41426s
max time network
154s
platform
linux_amd64
resource
ubuntu1804-amd64-en-20211208
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-en-20211208kernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
02-04-2023 04:09

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

bfcc7d2ed1fe95960da073157f29bd51

Resource

ubuntu1804-amd64-en-20211208

ubuntu-18.04-amd64

2 signatures

150 seconds

Report Analysis Logs

General

Target

bfcc7d2ed1fe95960da073157f29bd51
Size

34KB
MD5

bfcc7d2ed1fe95960da073157f29bd51
SHA1

64f1ccfd3f4d14a1980f32b2b38d405e05e12270
SHA256

351c03ea5f27b9cd0fce9b5502a08e62ee647b1adc6cdf56633bd1d958696552
SHA512

81f0a10671a9f472165f4b2aba1feef603a6ce3922e268d2a1ee9d2d32593c1991187a5e944c21adc75e015419fedac155d746a763f9196589d002f61cee9490
SSDEEP

768:kwlwD3ZE0ElS8A4sKW0SGrn8WFdy5grkPTDe+kVOnbcuyD7UJLUR6:kaeElS340GzTHynnFZnouy8Jl

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (183998) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Scanning
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Scanning
T1046

Processes

/tmp/bfcc7d2ed1fe95960da073157f29bd51
/tmp/bfcc7d2ed1fe95960da073157f29bd51
1⤵
PID:576

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy