8efa3e81d918aba0fe8f7f15773c8ec706cd691660727a0c3ca9e4e78a712736 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1c26aa3772aa403a3a6d31e151be1687
Size

22KB
Sample

231219-2k8dlseca6
MD5

1c26aa3772aa403a3a6d31e151be1687
SHA1

e973cf012b9b06fe2b171012244a17baf2709533
SHA256

8efa3e81d918aba0fe8f7f15773c8ec706cd691660727a0c3ca9e4e78a712736
SHA512

563a4b3eed5439afba2c58deaf63586ccb58bda5ef0bf18b53001c561badf6a44ed23958cd76d11a8c9031df0f4904e487fd199d4f6d60ad4e555dbfe9d38434
SSDEEP

384:fqbeLdzzzTh8WFzzM0PRiFgF11O4o95Ud69Zilwi6JmvG9ia48:CbEdnzl8WT5r18xZHiT+9ia4

Score

9^/10

discovery linux

Malware Config

Targets

- Target
  
  1c26aa3772aa403a3a6d31e151be1687
- Size
  
  22KB
- MD5
  
  1c26aa3772aa403a3a6d31e151be1687
- SHA1
  
  e973cf012b9b06fe2b171012244a17baf2709533
- SHA256
  
  8efa3e81d918aba0fe8f7f15773c8ec706cd691660727a0c3ca9e4e78a712736
- SHA512
  
  563a4b3eed5439afba2c58deaf63586ccb58bda5ef0bf18b53001c561badf6a44ed23958cd76d11a8c9031df0f4904e487fd199d4f6d60ad4e555dbfe9d38434
- SSDEEP
  
  384:fqbeLdzzzTh8WFzzM0PRiFgF11O4o95Ud69Zilwi6JmvG9ia48:CbEdnzl8WT5r18xZHiT+9ia4
Score

9^/10

discovery
- Contacts a large (8256) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Changes its process name
- Deletes itself
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1