Analysis
-
max time network
156s -
platform
debian-12_armhf -
resource
debian12-armhf-20240221-en -
resource tags
arch:armhfimage:debian12-armhf-20240221-enkernel:6.1.0-17-armmp-lpaelocale:en-usos:debian-12-armhfsystem -
submitted
19/04/2024, 11:06
Behavioral task
behavioral1
Sample
9cf6473a2a6f3902885113c7a00cc772.elf
Resource
debian12-armhf-20240221-en
2 signatures
150 seconds
General
-
Target
9cf6473a2a6f3902885113c7a00cc772.elf
-
Size
188KB
-
MD5
9cf6473a2a6f3902885113c7a00cc772
-
SHA1
e186ccd94cf170e5fa34dd1a7d5895a06878714e
-
SHA256
8f0268ef84fa5d00853be66f300bf6e46ea5e30365e6a5cfa2eb377fd0544102
-
SHA512
16d9de4f0febebbc5d1592b4e53570752ce73801ac15ea770f62eaa84f9edfbe2d8687d8f676853cd7dbd3edbef2864b2f820a21f014c8356e311289c7b96009
-
SSDEEP
3072:yn7KNPq6inZFsXRkIta9SvuDMh5hv8cBYUo3eRvUocM/RCZ:c7QWFshXta9SvuDM7xBXo3ovZcM/RCZ
Score
9/10
Malware Config
Signatures
-
Contacts a large (79792) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
-
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.