f101b9e30601bb9d7f0ae2b6c11fb4bd01fb53b2d38f2ecf1ea72bafa5b28c66 | Triage

Submit
Reports

Overview

overview

Static

static

f4db60d243...54f1f6

debian-9-armhf

9

Analysis

max time network
157s
platform
debian-9_armhf
resource
debian9-armhf-20231215-en
resource tags

arch:armhfimage:debian9-armhf-20231215-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
submitted
20-12-2023 17:18

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f4db60d2439a6594206a56a2cc54f1f6

Resource

debian9-armhf-20231215-en

debian-9-armhf

2 signatures

150 seconds

Report Analysis Logs

General

Target

f4db60d2439a6594206a56a2cc54f1f6
Size

38KB
MD5

f4db60d2439a6594206a56a2cc54f1f6
SHA1

c50be825235323bcb2e8441767369fd4cf493529
SHA256

f101b9e30601bb9d7f0ae2b6c11fb4bd01fb53b2d38f2ecf1ea72bafa5b28c66
SHA512

f2b1bce3b877253cc5d357f9c08a26bef3204c12bb2ebbec01a8c96f29aabbd5a798537d430e3a89f51e4baa2f613a2442e5a067999aebb87f78caaef8cef0b5
SSDEEP

768:j6MdnoABF4RZZLA3eYplD22XJobz8tt/Pd3m8QABFm5MwNOVbuHkAxRnYahEW:LdVF4tgRon8H3dWYmG4HxRn

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (53971) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046

Processes

Network

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy