Overview

overview

9

Static

static

1

320f68d6e4...46.elf

debian-9-armhf

9

Analysis

  • max time network
    151s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20240418-en
  • resource tags

    arch:armhfimage:debian9-armhf-20240418-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    28/05/2024, 14:24

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    320f68d6e477bf201151dd35ff2a5ee4401f4a8ecc5addd349271f9f198f4646.elf

  • Size

    96KB

  • MD5

    78fdba08b99c4979a10c230d9ead81dd

  • SHA1

    ca1468ff0d9b64446c26c6d91b72ce2cd7378451

  • SHA256

    320f68d6e477bf201151dd35ff2a5ee4401f4a8ecc5addd349271f9f198f4646

  • SHA512

    3ca6bf60085fdb8f4dd65122b46d9f9bcd064065de31a7e470dea36d26a7b7531ba9a420642a39307d84afe787b1ecfd09f0d299645c09e1d73bb836e6f04f84

  • SSDEEP

    1536:xLnSKnvm7iUXNXMPgfvlrC9/jgx6DXzs3ItNhXrd9l/Jibpl/mKZoY5cuj5:rvme26PgfOw6DXzs3Itpspl/mKOlu

Score
9/10
discovery

Malware Config

Signatures

  • Contacts a large (76257) amount of remote hosts 1 TTPs

    This may indicate a network scan to discover remotely running services.

    discovery
  • Creates a large amount of network flows 1 TTPs

    This may indicate a network scan to discover remotely running services.

    discovery
  • Unexpected DNS network traffic destination 1 IoCs

    Network traffic to other servers than the configured DNS servers was detected on the DNS port.

Processes

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads