Overview

overview

9

Static

static

1

02b3eaad2b...e86a46

debian-9-armhf

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    02b3eaad2b9bc6a9aa9e9f9467e86a46

  • Size

    61KB

  • Sample

    231219-2abxnaeggm

  • MD5

    02b3eaad2b9bc6a9aa9e9f9467e86a46

  • SHA1

    b8dde74a5535d80753722d49f604fb106b754578

  • SHA256

    800814a8c1d517957feadf37d2d80da21e3859588dc2dfc7d49d7e9f78fa352f

  • SHA512

    84fdc7a2537956df2fff533a92671168f07d8b65ee3c8929cff9cad1d32ef2d39752cd4a8bab6b68cdc9563f469d874f8e2f20aba07caf48eb4ad919e07692b9

  • SSDEEP

    1536:3inuU/0+n2HPJlM3+idXzBn3NlO8iD6e3XA:XGznwLM3+idXzcJ6eHA

Score
9/10
discovery

Malware Config

Targets

    • Target

      02b3eaad2b9bc6a9aa9e9f9467e86a46

    • Size

      61KB

    • MD5

      02b3eaad2b9bc6a9aa9e9f9467e86a46

    • SHA1

      b8dde74a5535d80753722d49f604fb106b754578

    • SHA256

      800814a8c1d517957feadf37d2d80da21e3859588dc2dfc7d49d7e9f78fa352f

    • SHA512

      84fdc7a2537956df2fff533a92671168f07d8b65ee3c8929cff9cad1d32ef2d39752cd4a8bab6b68cdc9563f469d874f8e2f20aba07caf48eb4ad919e07692b9

    • SSDEEP

      1536:3inuU/0+n2HPJlM3+idXzBn3NlO8iD6e3XA:XGznwLM3+idXzcJ6eHA

    Score
    9/10
    discovery

    • Contacts a large (90778) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Changes its process name

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks