8e5a83c63b80e411953fac0c77d44bd2066c4eeffa3d3b7319dadd15fdf80c0c | Triage

Submit
Reports

Overview

overview

Static

static

c164c99d86...16c21b

debian-12-armhf

9

Analysis

max time network
151s
platform
debian-12_armhf
resource
debian12-armhf-20240221-en
resource tags

arch:armhfimage:debian12-armhf-20240221-enkernel:6.1.0-17-armmp-lpaelocale:en-usos:debian-12-armhfsystem
submitted
11-03-2024 19:17

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

c164c99d86e7cecd4e495d23c616c21b

Resource

debian12-armhf-20240221-en

debian-12-armhf

2 signatures

150 seconds

Report Analysis Logs

General

Target

c164c99d86e7cecd4e495d23c616c21b
Size

139KB
MD5

c164c99d86e7cecd4e495d23c616c21b
SHA1

82e303e6acac6c012e280a526359917a73828f53
SHA256

8e5a83c63b80e411953fac0c77d44bd2066c4eeffa3d3b7319dadd15fdf80c0c
SHA512

1ee2b285a26b7d418357eca48bbd0830358b1b563a774e90a0d550e2508ccf59c88f1a489d31732731c595102a681666e149db67bd02b5660df30ed6f9686805
SSDEEP

3072:QybUEGniGQYtOR7aCgk9mrsplDKZUmQBKXAVanJX+F8Jyve4hL5AJI4+3jJNx139:DbUEGniGQYtOR7aPk9mrsplDKZUmQBKO

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (20590) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046

Processes

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy