383be3340b8dac3399c5d32c9c300aa17a99b6a7d598437540464ec8d4571877 | Triage

Sharing

General

Target

383be3340b8dac3399c5d32c9c300aa17a99b6a7d598437540464ec8d4571877.elf
Size

74KB
Sample

240522-bq1ylsga41
MD5

61fd4eb55ddf507e4338a29dede543c6
SHA1

3cf12b720148f2bfaf96d4187aef9970777da4d3
SHA256

383be3340b8dac3399c5d32c9c300aa17a99b6a7d598437540464ec8d4571877
SHA512

60f3c6060aa0bbd9d23128c64c12134b572b1dda817e6a5aed5804c22ea3990f8cd0f84fff8effb5c2048435ae115d73f4f6f46d75b673f9dad5bf71b6c7ff3f
SSDEEP

1536:Bqn+PILmg4WiFCJ7z9z8Q730FxqeQ0zWUaa2dlUUiMnmlPvC:dun4WVtp3wxqeQ0zWIenWi

Score

9^/10

discovery

Malware Config

Targets

- Target
  
  383be3340b8dac3399c5d32c9c300aa17a99b6a7d598437540464ec8d4571877.elf
- Size
  
  74KB
- MD5
  
  61fd4eb55ddf507e4338a29dede543c6
- SHA1
  
  3cf12b720148f2bfaf96d4187aef9970777da4d3
- SHA256
  
  383be3340b8dac3399c5d32c9c300aa17a99b6a7d598437540464ec8d4571877
- SHA512
  
  60f3c6060aa0bbd9d23128c64c12134b572b1dda817e6a5aed5804c22ea3990f8cd0f84fff8effb5c2048435ae115d73f4f6f46d75b673f9dad5bf71b6c7ff3f
- SSDEEP
  
  1536:Bqn+PILmg4WiFCJ7z9z8Q730FxqeQ0zWUaa2dlUUiMnmlPvC:dun4WVtp3wxqeQ0zWIenWi
Score

9^/10

discovery
- Contacts a large (76775) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1