connectback | 2199240df0149229a42737bfc80e114ca38cfac173eb1f90f081f3d3e1785af3 | Triage

Submit
Reports

Overview

overview

Static

static

18b1bd9e59...12f6af

ubuntu-18.04-amd64

7

Sharing

General

Target

18b1bd9e592093d40e5ccbba2312f6af
Size

249B
Sample

231219-2jw9ysdfd2
MD5

18b1bd9e592093d40e5ccbba2312f6af
SHA1

f24f92e4d903602002a956891f034ab2fde15c4c
SHA256

2199240df0149229a42737bfc80e114ca38cfac173eb1f90f081f3d3e1785af3
SHA512

43482eb5e6cfcb989dc8bd1dc1df3d0ddc77bad12547eb29de860bf7cad5de8cfc58bb1e01696cfe737ae9ea043147db19c79c1006197195b2a69fd1c08de0cf

Score

10^/10

connectback linux

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

18b1bd9e592093d40e5ccbba2312f6af

Resource

ubuntu1804-amd64-20231215-en

ubuntu-18.04-amd64

1 signatures

150 seconds

Malware Config

Extracted

Family

connectback

C2

42.200.249.142:53

Targets

- Target
  
  18b1bd9e592093d40e5ccbba2312f6af
- Size
  
  249B
- MD5
  
  18b1bd9e592093d40e5ccbba2312f6af
- SHA1
  
  f24f92e4d903602002a956891f034ab2fde15c4c
- SHA256
  
  2199240df0149229a42737bfc80e114ca38cfac173eb1f90f081f3d3e1785af3
- SHA512
  
  43482eb5e6cfcb989dc8bd1dc1df3d0ddc77bad12547eb29de860bf7cad5de8cfc58bb1e01696cfe737ae9ea043147db19c79c1006197195b2a69fd1c08de0cf
Score

7^/10
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy