Extracted

• • Target

    369-1-0x00008000-0x0002a63c-memory.dmp

  • Size

    93KB

  • MD5

    5cbaaabcf941737e9de2eff7dcb01cf2

  • SHA1

    b7a26a1a7df347078b89dfde1e8dfd235bc0b621

  • SHA256

    910295487b65e1d865fe308035fb8e69e9e956b8a3a99f2a02b5b6e827fd4cf7

  • SHA512

    0af9454d5782f80b37628dc0cca9a0105c87df314033b2ec6f19fd102301184c2de8074e246ef7ca3f67e2f451eddffc276d13e565b9eb55327c79cf79a7318c

  • SSDEEP

    1536:LynEvBlYh0I6QAb6nxeE3UP5QyfCYkzvlQJPptlY5FQ/VtTFNzIb+llWzi7B8/yV:3vBloAsxjkPmwCZpixtujQ/VtTFNqF+/

  Score

  9^/10

  discovery

  • Contacts a large (138072) amount of remote hosts

    This may indicate a network scan to discover remotely running services.

    discovery

  • Creates a large amount of network flows

    This may indicate a network scan to discover remotely running services.

    discovery

  • Changes its process name

  • Modifies Watchdog functionality

    Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

  • Writes file to system bin folder

  behavioral1