Overview

overview

7

Static

static

7

ba0314b841...cb.elf

ubuntu-20.04-amd64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    ba0314b841c4e9d6ea1ba8f5e5c5bbcb.elf

  • Size

    61KB

  • Sample

    240325-qxc8fscd7z

  • MD5

    ba0314b841c4e9d6ea1ba8f5e5c5bbcb

  • SHA1

    4127607668ea5b2fa73365b16f636c45ad93eb99

  • SHA256

    b5ba78679140fd6d6b53f45d56f572b630f138de9ed6ff8613eabb8f4015710c

  • SHA512

    5b0da85660b1859985da0c6bdcbd9f68919e69ed75805f8f1a51d8c68bc6eb1559a577b6e8127ba154282f4fb920d954d767a49f7528cc5913c73f8159ed9666

  • SSDEEP

    1536:g2Q3dvd0ZmvDEL+oEHk4T7rc+YdlWNKzGbkhW/+8Y:GdvaZFLBEHk4T7kFz2kMxY

Score
7/10
linuxupx

Malware Config

Targets

    • Target

      ba0314b841c4e9d6ea1ba8f5e5c5bbcb.elf

    • Size

      61KB

    • MD5

      ba0314b841c4e9d6ea1ba8f5e5c5bbcb

    • SHA1

      4127607668ea5b2fa73365b16f636c45ad93eb99

    • SHA256

      b5ba78679140fd6d6b53f45d56f572b630f138de9ed6ff8613eabb8f4015710c

    • SHA512

      5b0da85660b1859985da0c6bdcbd9f68919e69ed75805f8f1a51d8c68bc6eb1559a577b6e8127ba154282f4fb920d954d767a49f7528cc5913c73f8159ed9666

    • SSDEEP

      1536:g2Q3dvd0ZmvDEL+oEHk4T7rc+YdlWNKzGbkhW/+8Y:GdvaZFLBEHk4T7kFz2kMxY

    Score
    7/10

    • Changes its process name

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Enumerates active TCP sockets

      Gets active TCP sockets from /proc virtual filesystem.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks