Extracted

• • Target

    78fff3620561ec9b1bdaf431cbc2aaed

  • Size

    189KB

  • MD5

    78fff3620561ec9b1bdaf431cbc2aaed

  • SHA1

    8a3b13e0ecbe307e0d20b8654f1997143f0d2145

  • SHA256

    60a993a128dce78272941b21f431c35c3458891d29d8a1e477836c3d4b71afd7

  • SHA512

    54762b806d4aa9177c893daf64c7e15f691a54e6a0c692de4d5bf631c757b10d24b2d2be301cf149fef2588d4de1193b5bbd5beefc6bcc96ffd2bb8bbc09f2e7

  • SSDEEP

    3072:B37SYpLA0FJWsGOcriwPuaBakNORuDe+WShh0uKbRPVkHNajzHWSPWMzZ2wBhiEq:huY+uaBakNOADechLKbAAjzHpBhiEdTQ

  Score

  9^/10

  discovery

  • Contacts a large (6890) amount of remote hosts

    This may indicate a network scan to discover remotely running services.

    discovery

  • Changes its process name

  • Creates a large amount of network flows

    This may indicate a network scan to discover remotely running services.

    discovery

  • Reads system routing table

    Gets active network interfaces from /proc virtual filesystem.

  behavioral1