Overview

overview

9

Static

static

1

5bd44a3509...ddfa62

ubuntu-18.04-amd64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    5bd44a35094fe6f7794d895122ddfa62

  • Size

    7.3MB

  • Sample

    231219-3bpetadfgq

  • MD5

    5bd44a35094fe6f7794d895122ddfa62

  • SHA1

    98172e49c3d5d70ffdcefd071f9762c58430a393

  • SHA256

    762a4f2bf5ea4ff72fce674da1adf29f0b9357be18de4cd992d79198c56bb514

  • SHA512

    4033c7335a44a7536a3980aad8cf18ff6336186d71dd7b7f02c3d5c93001ed974285fe9fbbf783bc0abac3e3b3581993ad6d2ac285249aa24b0aafa261f74de8

  • SSDEEP

    49152:mNLLdMtTbVDtCsN5laK2BfCDvI7ZR9kAs5dkPjU2NhYCWpdLJaDSfUGZnh7X3cM9:mNlMt1tCsN5LGfCL7ATfscS8QhXP

Score
9/10
discoverylinux

Malware Config

Targets

    • Target

      5bd44a35094fe6f7794d895122ddfa62

    • Size

      7.3MB

    • MD5

      5bd44a35094fe6f7794d895122ddfa62

    • SHA1

      98172e49c3d5d70ffdcefd071f9762c58430a393

    • SHA256

      762a4f2bf5ea4ff72fce674da1adf29f0b9357be18de4cd992d79198c56bb514

    • SHA512

      4033c7335a44a7536a3980aad8cf18ff6336186d71dd7b7f02c3d5c93001ed974285fe9fbbf783bc0abac3e3b3581993ad6d2ac285249aa24b0aafa261f74de8

    • SSDEEP

      49152:mNLLdMtTbVDtCsN5laK2BfCDvI7ZR9kAs5dkPjU2NhYCWpdLJaDSfUGZnh7X3cM9:mNlMt1tCsN5LGfCL7ATfscS8QhXP

    Score
    9/10
    discovery

    • Contacts a large (7843) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks