954b6ee560d6f758a081650c4852b88a490a02bdd34c09262bdac64e3080b8b9 | Triage

Sharing

General

Target

954b6ee560d6f758a081650c4852b88a490a02bdd34c09262bdac64e3080b8b9.elf
Size

88KB
Sample

240521-rqzcsaha35
MD5

5b7cf643c8a4721e4a3e9e17273460d1
SHA1

ae08af5bdf1689a5d67004cba2553b0c9606c546
SHA256

954b6ee560d6f758a081650c4852b88a490a02bdd34c09262bdac64e3080b8b9
SHA512

e0940c87bd74f280347b15e967b1bdbd6d5350453bb2f0dd1e7bd53a4278aa9581080ca88e6e304e0590d0579de1f030aa94680229c058b12a6d31cc6f0830a6
SSDEEP

1536:Njnygs13dZVejfryrS/EFDbHlbN+TcpIEsifP3HXU9fne+xaCgGofnEaEMdWxTxv:Q/nej18FDLFNfZP3HX4m+xwjeAE

Score

9^/10

discovery

Malware Config

Targets

- Target
  
  954b6ee560d6f758a081650c4852b88a490a02bdd34c09262bdac64e3080b8b9.elf
- Size
  
  88KB
- MD5
  
  5b7cf643c8a4721e4a3e9e17273460d1
- SHA1
  
  ae08af5bdf1689a5d67004cba2553b0c9606c546
- SHA256
  
  954b6ee560d6f758a081650c4852b88a490a02bdd34c09262bdac64e3080b8b9
- SHA512
  
  e0940c87bd74f280347b15e967b1bdbd6d5350453bb2f0dd1e7bd53a4278aa9581080ca88e6e304e0590d0579de1f030aa94680229c058b12a6d31cc6f0830a6
- SSDEEP
  
  1536:Njnygs13dZVejfryrS/EFDbHlbN+TcpIEsifP3HXU9fne+xaCgGofnEaEMdWxTxv:Q/nej18FDLFNfZP3HX4m+xwjeAE
Score

9^/10

discovery
- Contacts a large (23824) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1