Overview

overview

10

Static

static

10

hey.elf

ubuntu-18.04-amd64

9

hey.elf

ubuntu-20.04-amd64

Resubmissions

29-04-2024 02:20

240429-csqq4afg5s 10

29-04-2024 02:14

240429-cpd8wsfc54 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    hey.elf

  • Size

    80KB

  • Sample

    240429-csqq4afg5s

  • MD5

    f597d74b84929ded948fc42c6f6210e5

  • SHA1

    ce84c75b28f7cde633db0076309c45683029efdf

  • SHA256

    556e5cb5e4e77678110961c8d9260a726a363e00bf8d278e5302cb4bfccc3eed

  • SHA512

    594c926fd3d51475941260c96d75c4499068e650359d5ab755601d87cacaa74c52df383f21f4b91b41213129a489ad04612952da5ada795386fdd91580c18b06

  • SSDEEP

    768:MxHWw88+bmkfRk9gqzCM0CiRgQTcF7onjj7ef/6+e2YahXG+cwuX+9KPlL0+HjMv:MNWJbffRzqzJi3e1Nx+o5V4+nFSDs

Score
10/10
hellokittylinuxransomware

Malware Config

Targets

    • Target

      hey.elf

    • Size

      80KB

    • MD5

      f597d74b84929ded948fc42c6f6210e5

    • SHA1

      ce84c75b28f7cde633db0076309c45683029efdf

    • SHA256

      556e5cb5e4e77678110961c8d9260a726a363e00bf8d278e5302cb4bfccc3eed

    • SHA512

      594c926fd3d51475941260c96d75c4499068e650359d5ab755601d87cacaa74c52df383f21f4b91b41213129a489ad04612952da5ada795386fdd91580c18b06

    • SSDEEP

      768:MxHWw88+bmkfRk9gqzCM0CiRgQTcF7onjj7ef/6+e2YahXG+cwuX+9KPlL0+HjMv:MNWJbffRzqzJi3e1Nx+o5V4+nFSDs

    Score
    9/10
    ransomware

    • Renames multiple (22536) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks