Overview

overview

10

Static

static

10

32c5be79ea...e6.bin

ubuntu-18.04-amd64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    32c5be79eae6920b5e016b3a08fc65e6.bin

  • Size

    32KB

  • Sample

    231009-bmkr8abe33

  • MD5

    32c5be79eae6920b5e016b3a08fc65e6

  • SHA1

    b4c507a62342744df9015b3da28ef1c65ad00e8e

  • SHA256

    bf60e22b14fb5e2ed603f86050d3fdb78fb0458df3fb717aeeb54b23454ca623

  • SHA512

    442b8a33f22d2f7557b260e7db429425627d9f0a595da52e09a18cdb97790c012ee138885400884edff6a5b63d7af0ec85d86c0a314557be5ffbcbbca9193d69

  • SSDEEP

    384:fZQgVxb505bpxryyd9IA1tMIkKi+yI3on7c8USNeKKsfwR/9QSm9UoO10kr9J28D:DbEf9tdh3ogcNeLfOuoOh2e9SZlxo7

Score
10/10
mirailinux

Malware Config

Targets

    • Target

      32c5be79eae6920b5e016b3a08fc65e6.bin

    • Size

      32KB

    • MD5

      32c5be79eae6920b5e016b3a08fc65e6

    • SHA1

      b4c507a62342744df9015b3da28ef1c65ad00e8e

    • SHA256

      bf60e22b14fb5e2ed603f86050d3fdb78fb0458df3fb717aeeb54b23454ca623

    • SHA512

      442b8a33f22d2f7557b260e7db429425627d9f0a595da52e09a18cdb97790c012ee138885400884edff6a5b63d7af0ec85d86c0a314557be5ffbcbbca9193d69

    • SSDEEP

      384:fZQgVxb505bpxryyd9IA1tMIkKi+yI3on7c8USNeKKsfwR/9QSm9UoO10kr9J28D:DbEf9tdh3ogcNeLfOuoOh2e9SZlxo7

    Score
    7/10

    • Changes its process name

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Enumerates active TCP sockets

      Gets active TCP sockets from /proc virtual filesystem.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks