5e32a7ccd55a9ac1a8e04ce166d9494ec0a464a8fdd1e7d9c1cd24b6bab8ebf2

Analysis

max time kernel
152s
max time network
155s
platform
ubuntu-18.04_amd64
resource
ubuntu1804-amd64-20231215-en
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-20231215-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
12-02-2024 03:54

Target

5e32a7ccd55a9ac1a8e04ce166d9494ec0a464a8fdd1e7d9c1cd24b6bab8ebf2.elf
Size

68KB
MD5

374b1d8ba1815f657832726b68968492
SHA1

473d70a57b6621f6792b930c7037808fcc1ce8df
SHA256

5e32a7ccd55a9ac1a8e04ce166d9494ec0a464a8fdd1e7d9c1cd24b6bab8ebf2
SHA512

d2950d75c1f3583fef5bd91a9eced56ad7e9a41db29b652fd28b98979c7cd0694b3fa7ca693f4a3ba00cdae1b9f92886c238769f4f563993a4f2dece3f8cb0d9
SSDEEP

1536:0R+IfURc65sc2mLSiFKy4oJWDGUX31s5Ugr:gHToSicsG+p

Score

9^/10

discovery

Contacts a large (75743) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046

Deletes itself 1 IoCs

pid	Process
1516	5e32a7ccd55a9ac1a8e04ce166d9494ec0a464a8fdd1e7d9c1cd24b6bab8ebf2.elf

/tmp/5e32a7ccd55a9ac1a8e04ce166d9494ec0a464a8fdd1e7d9c1cd24b6bab8ebf2.elf
/tmp/5e32a7ccd55a9ac1a8e04ce166d9494ec0a464a8fdd1e7d9c1cd24b6bab8ebf2.elf
1⤵
- Deletes itself
PID:1516

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact