e4377a9af3da923e95212a50a4c4196c2b536bcc5ac6eeecdcbd9dbf87167b89 | Triage

Submit
Reports

Overview

overview

Static

static

48597377b4...04.elf

debian-9-armhf

9

Analysis

max time network
151s
platform
debian-9_armhf
resource
debian9-armhf-20240226-en
resource tags

arch:armhfimage:debian9-armhf-20240226-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
submitted
28/05/2024, 06:51

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

48597377b427329fef3f1793eb144f04.elf

Resource

debian9-armhf-20240226-en

debian-9-armhf

2 signatures

150 seconds

Report Analysis Logs

General

Target

48597377b427329fef3f1793eb144f04.elf
Size

142KB
MD5

48597377b427329fef3f1793eb144f04
SHA1

f0f1c1c7b8620ad89945cd7068a7c49851263b78
SHA256

e4377a9af3da923e95212a50a4c4196c2b536bcc5ac6eeecdcbd9dbf87167b89
SHA512

fa4fac45c73dc1f497a9ba22c916d3430c4ef8388737ef44abe8e1290978a58cf2b25522c7814271dc59f7379a7814aec053927acae63dc55365af53d7fcf102
SSDEEP

3072:/Pjx8xxwoOcjlCa1NwN4w/613S6aiWYNPdM1M:/PSrjx/u4w/C3S6EYZdMy

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (85526) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046

Processes

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy