General

  • Target

    ecca8aeaeaa7ff8c1de8a1e75bc1137a.elf

  • Size

    194KB

  • Sample

    240223-kmklwsed86

  • MD5

    ecca8aeaeaa7ff8c1de8a1e75bc1137a

  • SHA1

    8663c6fa9b7a335b556b50c4f71a0c1df046d231

  • SHA256

    456a984571682f9a2d8ac1f2f8e5aab0f4596122e00c1210049903f557724d31

  • SHA512

    4876db5d841fc8b0187f3e3de7acaeb2dcfe1637581aa457bb9354562e252056d4c9090ff355dad588f469132e8bf20610c2d63d685ecf04853c2db8d96a35bf

  • SSDEEP

    3072:cNYW0dDSB56/UfpwwVSfvjJCnVV4H3NnTZFa:cNYWdB568BwmSfrUoHZT3

Score
10/10

Malware Config

Targets

    • Target

      ecca8aeaeaa7ff8c1de8a1e75bc1137a.elf

    • Size

      194KB

    • MD5

      ecca8aeaeaa7ff8c1de8a1e75bc1137a

    • SHA1

      8663c6fa9b7a335b556b50c4f71a0c1df046d231

    • SHA256

      456a984571682f9a2d8ac1f2f8e5aab0f4596122e00c1210049903f557724d31

    • SHA512

      4876db5d841fc8b0187f3e3de7acaeb2dcfe1637581aa457bb9354562e252056d4c9090ff355dad588f469132e8bf20610c2d63d685ecf04853c2db8d96a35bf

    • SSDEEP

      3072:cNYW0dDSB56/UfpwwVSfvjJCnVV4H3NnTZFa:cNYWdB568BwmSfrUoHZT3

    Score
    9/10
    • Contacts a large (78038) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Changes its process name

    • Enumerates running processes

      Discovers information about currently running processes on the system

MITRE ATT&CK Enterprise v15

Tasks