Resubmissions

13-04-2024 09:25

240413-ldws8sfe9v 10

03-04-2024 14:08

240403-rfzwkaee54 10

31-03-2024 01:17

240331-bnr8pabf78 1

General

  • Target

    cbeef92e67bf41ca9c015557d81f39adaba67ca9fb3574139754999030b83537.elf

  • Size

    86KB

  • MD5

    212ffa0b24bb7d749532425a46764433

  • SHA1

    0ebf4b63737cdf3e084941c7d02f8eec5ca8d257

  • SHA256

    cbeef92e67bf41ca9c015557d81f39adaba67ca9fb3574139754999030b83537

  • SHA512

    b26187218c131a5f72c078fef340f639322e1b9e73097f3346a114e82f8eb0367cf70c385bdcd24f50d518de1873f0b6e4e44df2693ff6cb05db5e544db39a29

  • SSDEEP

    1536:4aW0m6lUoBmc+GtlWu/gIP5xaBZ6+LGP4DWBbIpKqqEg2B8TLXM/U8udsO+x21Os:4aQQBMRu/gujaBU+G4p3acM8udsOz1Os

Score
10/10

Malware Config

Signatures

  • XZUtil is a linux backdoor releated to the CVE-2024-3094. 1 IoCs
  • Xzutil family

Files

  • cbeef92e67bf41ca9c015557d81f39adaba67ca9fb3574139754999030b83537.elf
    .elf linux x64