Overview

overview

9

Static

static

1

cf1b3dea7a...ad.elf

ubuntu-18.04-amd64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cf1b3dea7a2038ec1287e40601263a4ca64766d159b3b92312ed6c1cdc36dcad.elf

  • Size

    148KB

  • Sample

    240213-f2229sgc98

  • MD5

    92dc5cee6b68a38a1d18deca564541ef

  • SHA1

    26976526b55c4fa0d850920105b56cec0f8daa86

  • SHA256

    cf1b3dea7a2038ec1287e40601263a4ca64766d159b3b92312ed6c1cdc36dcad

  • SHA512

    cf8925389fb545f1236d46dab6e924a4acbcd0d35b8f3991a65f036b88c5cb047cc49dd625881e0bf5342b00578c8ecadda0e24570c0c131817780f0817b73df

  • SSDEEP

    3072:CPcmzjA+DVFkbLyrmrWKdpn617FnD/McPp1DrLjcrFh:CPcmzjA+DVFkbb6Bjch

Score
9/10
discoverylinux

Malware Config

Targets

    • Target

      cf1b3dea7a2038ec1287e40601263a4ca64766d159b3b92312ed6c1cdc36dcad.elf

    • Size

      148KB

    • MD5

      92dc5cee6b68a38a1d18deca564541ef

    • SHA1

      26976526b55c4fa0d850920105b56cec0f8daa86

    • SHA256

      cf1b3dea7a2038ec1287e40601263a4ca64766d159b3b92312ed6c1cdc36dcad

    • SHA512

      cf8925389fb545f1236d46dab6e924a4acbcd0d35b8f3991a65f036b88c5cb047cc49dd625881e0bf5342b00578c8ecadda0e24570c0c131817780f0817b73df

    • SSDEEP

      3072:CPcmzjA+DVFkbLyrmrWKdpn617FnD/McPp1DrLjcrFh:CPcmzjA+DVFkbb6Bjch

    Score
    9/10
    discovery

    • Contacts a large (83362) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Changes its process name

    • Enumerates running processes

      Discovers information about currently running processes on the system

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks