General
-
Target
i686.elf
-
Size
73KB
-
Sample
230705-ld69zada3v
-
MD5
a530a61773760fddb6df6e4d6c7b8347
-
SHA1
3853fe49da3b6da8dc3172316d6cf34d497c6755
-
SHA256
50dbb21521c0dfef6b9ec2ae383a041a323c09f6b02a6f956c0de2830c554748
-
SHA512
e46cd4e88d6016030d278d4cc4324ac31f8c1909a46ee62211dcb80a3621919747424eb7bd3252199ef44b6274e0de90c2db5ba01c3a1f7d0ffd3ce47fab68e7
-
SSDEEP
1536:Rzk4bnSsSfgFyVHjav2y3WUqFVFWoa4INUBssOGIiJkJBZ5J30y0iBIu:RzLSsSfgFIHj88HFTWoa3NUsRn5t0yx5
Malware Config
Targets
-
-
Target
i686.elf
-
Size
73KB
-
MD5
a530a61773760fddb6df6e4d6c7b8347
-
SHA1
3853fe49da3b6da8dc3172316d6cf34d497c6755
-
SHA256
50dbb21521c0dfef6b9ec2ae383a041a323c09f6b02a6f956c0de2830c554748
-
SHA512
e46cd4e88d6016030d278d4cc4324ac31f8c1909a46ee62211dcb80a3621919747424eb7bd3252199ef44b6274e0de90c2db5ba01c3a1f7d0ffd3ce47fab68e7
-
SSDEEP
1536:Rzk4bnSsSfgFyVHjav2y3WUqFVFWoa4INUBssOGIiJkJBZ5J30y0iBIu:RzLSsSfgFIHj88HFTWoa3NUsRn5t0yx5
Score9/10-
Contacts a large (171718) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Deletes itself
-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Writes file to system bin folder
-