318e80dbc9271bd7f393c94971875351767c3dcd6c49b6a7916118c883fe23e1 | Triage

Submit
Reports

Overview

overview

9

Static

static

7

318e80dbc9...e1.elf

debian-9-armhf

9

Sharing

General

Target

318e80dbc9271bd7f393c94971875351767c3dcd6c49b6a7916118c883fe23e1.elf
Size

1.2MB
Sample

240521-rs1nmahb91
MD5

f95d1425a0346b43a99b16fc9bc034a4
SHA1

7831691120170e6773d46115f6abaad738f01469
SHA256

318e80dbc9271bd7f393c94971875351767c3dcd6c49b6a7916118c883fe23e1
SHA512

949bd95d90e5bb93c6b5c283616f8a67b18d8cfc9b987a9d3ef37731270416d0b87d7ff3bc351b4ae976a3feff24ba94e59b9d8ef715739d3342645d69b94c27
SSDEEP

24576:kB+9PIWqSfYHK8W5qgPgVmbGVm5AsRaOxhQ28+sQgTfldjaqKQr0TqCUYFtU2X:kcuWffN8gPg/VaRaOxm28BrTfTaBQTCv

Score

9^/10

discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

318e80dbc9271bd7f393c94971875351767c3dcd6c49b6a7916118c883fe23e1.elf

Resource

debian9-armhf-20240418-en

debian-9-armhf

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  318e80dbc9271bd7f393c94971875351767c3dcd6c49b6a7916118c883fe23e1.elf
- Size
  
  1.2MB
- MD5
  
  f95d1425a0346b43a99b16fc9bc034a4
- SHA1
  
  7831691120170e6773d46115f6abaad738f01469
- SHA256
  
  318e80dbc9271bd7f393c94971875351767c3dcd6c49b6a7916118c883fe23e1
- SHA512
  
  949bd95d90e5bb93c6b5c283616f8a67b18d8cfc9b987a9d3ef37731270416d0b87d7ff3bc351b4ae976a3feff24ba94e59b9d8ef715739d3342645d69b94c27
- SSDEEP
  
  24576:kB+9PIWqSfYHK8W5qgPgVmbGVm5AsRaOxhQ28+sQgTfldjaqKQr0TqCUYFtU2X:kcuWffN8gPg/VaRaOxm28BrTfTaBQTCv
Score

9^/10

discovery
- Contacts a large (3763082) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy