Overview

overview

9

Static

static

7

9a650e3c35...8fc1f5

ubuntu-18.04-amd64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    9a650e3c35b2578f13b62249a08fc1f5

  • Size

    42KB

  • Sample

    231220-k36t3ahdg5

  • MD5

    9a650e3c35b2578f13b62249a08fc1f5

  • SHA1

    3e8a671d59db4c0e7145e56385091800a2399052

  • SHA256

    4efe30089921e5a838436eab492be022bdfe8b24d51e0fe1d17b535bf07ec549

  • SHA512

    4db71b6d00271a670baf56c3aeac917dddeda19728ede7cf3504e1f9f00a2c7a24ac7e96e5fcbcb46b5a5407fd48dbd1538f4c6e4e46a9eea21cd4e87c4aab91

  • SSDEEP

    768:5bRSqONBgbZ1hansXO1fqbe3wQPHHrgoQyXVGKvHBdO6A0Yeylqv:5gq0Bgb3h21fqbWPHHMyXQAHB0reykv

Score
9/10
discoverylinuxupx

Malware Config

Targets

    • Target

      9a650e3c35b2578f13b62249a08fc1f5

    • Size

      42KB

    • MD5

      9a650e3c35b2578f13b62249a08fc1f5

    • SHA1

      3e8a671d59db4c0e7145e56385091800a2399052

    • SHA256

      4efe30089921e5a838436eab492be022bdfe8b24d51e0fe1d17b535bf07ec549

    • SHA512

      4db71b6d00271a670baf56c3aeac917dddeda19728ede7cf3504e1f9f00a2c7a24ac7e96e5fcbcb46b5a5407fd48dbd1538f4c6e4e46a9eea21cd4e87c4aab91

    • SSDEEP

      768:5bRSqONBgbZ1hansXO1fqbe3wQPHHrgoQyXVGKvHBdO6A0Yeylqv:5gq0Bgb3h21fqbWPHHMyXQAHB0reykv

    Score
    9/10
    discovery

    • Contacts a large (23524) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Changes its process name

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks