Behavioral task
behavioral1
Sample
f864922f947a6bb7d894245b53795b54b9378c0f7633c521240488e86f60c2c5.elf
Resource
ubuntu1804-amd64-20221111-en
0 signatures
150 seconds
General
-
Target
f864922f947a6bb7d894245b53795b54b9378c0f7633c521240488e86f60c2c5.zip
-
Size
32KB
-
MD5
78d2dcbe1fd6f8d92439cb4b3088dcab
-
SHA1
e7d26f319f2419ddede875bc80b9a5d5ef10bc6d
-
SHA256
505c4e75d52e9a63281e4d8c37b36b68221cf76e616ef5acb45c5a9a80cf406f
-
SHA512
fffe9cd1ff503c41e251058933d94251130726e90dd12adbdca3f085d476231f11fd36abe55dcb3b4de8e135b55d5b32f2772d429ea77118e5f41564b65ca244
-
SSDEEP
768:d656vzJNzeY0vOpEZQuhxKZ6iMnoFZWKTgBpOdD1aVW:tvXe3vbWyiMoqE8seQ
Score
10/10
Malware Config
Signatures
-
Sodinokibi family
-
Sodinokibi/Revil Elf 1 IoCs
Processes:
resource yara_rule static1/unpack001/f864922f947a6bb7d894245b53795b54b9378c0f7633c521240488e86f60c2c5.elf family_sodinokobi_elf
Files
-
f864922f947a6bb7d894245b53795b54b9378c0f7633c521240488e86f60c2c5.zip.zip
Password: infected
-
f864922f947a6bb7d894245b53795b54b9378c0f7633c521240488e86f60c2c5.elf.elf linux x64