Overview

overview

9

Static

static

1

x86.elf

ubuntu-18.04-amd64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    x86.elf

  • Size

    96KB

  • Sample

    231011-jn7x5sac8v

  • MD5

    504d6ed757193186085873f81ebddb09

  • SHA1

    b70edef1f24ef038759e2563ce18b6fd4615b6d9

  • SHA256

    eae3c589ff17b6443dd23b5492005d941cfd77158ff56724749b9717eb3d2304

  • SHA512

    61fb04868f871782bbf45f7f88a59d77d3e5ff97c10e21e03a4dabe3eb1c5d7991c696fecc5edc11f8f4373122f84e7c856510f4d05a4d1af87e42dd35f5bfee

  • SSDEEP

    1536:WKkbbbBxLLmvKPXlmz1Ig3oGbFAFiwtUUFS2yvLz1Ba:WKkXbBxfmSPXlmqAb6iWlsXzPa

Score
9/10
discoverylinux

Malware Config

Targets

    • Target

      x86.elf

    • Size

      96KB

    • MD5

      504d6ed757193186085873f81ebddb09

    • SHA1

      b70edef1f24ef038759e2563ce18b6fd4615b6d9

    • SHA256

      eae3c589ff17b6443dd23b5492005d941cfd77158ff56724749b9717eb3d2304

    • SHA512

      61fb04868f871782bbf45f7f88a59d77d3e5ff97c10e21e03a4dabe3eb1c5d7991c696fecc5edc11f8f4373122f84e7c856510f4d05a4d1af87e42dd35f5bfee

    • SSDEEP

      1536:WKkbbbBxLLmvKPXlmz1Ig3oGbFAFiwtUUFS2yvLz1Ba:WKkXbBxfmSPXlmqAb6iWlsXzPa

    Score
    9/10
    discovery

    • Contacts a large (46055) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Changes its process name

    • Enumerates running processes

      Discovers information about currently running processes on the system

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks