9d8727da38c6e6834697c02c6752187337237aca4e9a9a6ddc8208cdca38c1b1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

x86.elf
Size

50KB
Sample

230416-pdq5jabg5w
MD5

3be61529dcad4c6020972053ece7c99a
SHA1

46ca79455e676873fb7aaa93dddebe28416ecbbb
SHA256

9d8727da38c6e6834697c02c6752187337237aca4e9a9a6ddc8208cdca38c1b1
SHA512

6c6ad04e43b856a43fd931a3461879985516d33dab42d2bd0fcd6e666862935a716e58de6f4d71234a418e81204cbc3226e13d3ec95b98ba69ba3cd12864112f
SSDEEP

1536:vbxZ+QmM0P+IWFWidh8dsSK3Au6I0iIBIF0x5L:dZ+QmBto9ATB+Eh

Score

9^/10

discovery linux

Malware Config

Targets

- Target
  
  x86.elf
- Size
  
  50KB
- MD5
  
  3be61529dcad4c6020972053ece7c99a
- SHA1
  
  46ca79455e676873fb7aaa93dddebe28416ecbbb
- SHA256
  
  9d8727da38c6e6834697c02c6752187337237aca4e9a9a6ddc8208cdca38c1b1
- SHA512
  
  6c6ad04e43b856a43fd931a3461879985516d33dab42d2bd0fcd6e666862935a716e58de6f4d71234a418e81204cbc3226e13d3ec95b98ba69ba3cd12864112f
- SSDEEP
  
  1536:vbxZ+QmM0P+IWFWidh8dsSK3Au6I0iIBIF0x5L:dZ+QmBto9ATB+Eh
Score

9^/10

discovery
- Contacts a large (111040) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1