Overview

overview

7

Static

static

1

daad91ca9d...97.elf

debian-9-mipsel

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    daad91ca9dd7cf5a4ce54847d7e7ec2f829d5145099930af3f728af644c34697.elf

  • Size

    50KB

  • Sample

    240424-cdkljaea6s

  • MD5

    bb08c43e8047acfe9c49af768a8998b8

  • SHA1

    5cd38d59e8cc458a29a0ba167dbbd66b3e4ea6eb

  • SHA256

    daad91ca9dd7cf5a4ce54847d7e7ec2f829d5145099930af3f728af644c34697

  • SHA512

    29e260c7a91c40677831674a0e8065e50e8c5644289870ef97f57b6111c9baf82f8bb5cf0285f91def9ab6602869755524ab5978de7c2370718c232928d1f624

  • SSDEEP

    1536:YL6cN8CMV+z1WOX20r5sYuNEj0ngMxNpOLwauny:Y+cbg+IOX2g5sfxgO0sA

Score
7/10

Malware Config

Targets

    • Target

      daad91ca9dd7cf5a4ce54847d7e7ec2f829d5145099930af3f728af644c34697.elf

    • Size

      50KB

    • MD5

      bb08c43e8047acfe9c49af768a8998b8

    • SHA1

      5cd38d59e8cc458a29a0ba167dbbd66b3e4ea6eb

    • SHA256

      daad91ca9dd7cf5a4ce54847d7e7ec2f829d5145099930af3f728af644c34697

    • SHA512

      29e260c7a91c40677831674a0e8065e50e8c5644289870ef97f57b6111c9baf82f8bb5cf0285f91def9ab6602869755524ab5978de7c2370718c232928d1f624

    • SSDEEP

      1536:YL6cN8CMV+z1WOX20r5sYuNEj0ngMxNpOLwauny:Y+cbg+IOX2g5sfxgO0sA

    Score
    7/10

    • Deletes itself

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Enumerates active TCP sockets

      Gets active TCP sockets from /proc virtual filesystem.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks