General

  • Target

    8c8d832581a492083e8a97a1016a4ce86a3e0f0c20b21d21e6334e47982719bb.elf

  • Size

    1.8MB

  • Sample

    240531-jw61tacg38

  • MD5

    2943fab87e9c1b8ef86863f47d41518a

  • SHA1

    cfc74dbf94e081bbb2fc6dce3c421aee7aa9c762

  • SHA256

    8c8d832581a492083e8a97a1016a4ce86a3e0f0c20b21d21e6334e47982719bb

  • SHA512

    71a82a65dd6e28631031ce9fde6b51ffb8ad346e80b1e52360a797d593a57bf6ad88671b0cff99483037165e534ef330d90f215f775a66052893a77afe7a5243

  • SSDEEP

    24576:SVYUv48dzkVceO2htyDVjYYqyjDFEzQZ7M/wE8GqKyDcnI3BiiIL3LI/ipMPLFdq:PC4NVNhc8YpqJYER65343nsipMP5qv0I

Score
9/10

Malware Config

Targets

    • Target

      8c8d832581a492083e8a97a1016a4ce86a3e0f0c20b21d21e6334e47982719bb.elf

    • Size

      1.8MB

    • MD5

      2943fab87e9c1b8ef86863f47d41518a

    • SHA1

      cfc74dbf94e081bbb2fc6dce3c421aee7aa9c762

    • SHA256

      8c8d832581a492083e8a97a1016a4ce86a3e0f0c20b21d21e6334e47982719bb

    • SHA512

      71a82a65dd6e28631031ce9fde6b51ffb8ad346e80b1e52360a797d593a57bf6ad88671b0cff99483037165e534ef330d90f215f775a66052893a77afe7a5243

    • SSDEEP

      24576:SVYUv48dzkVceO2htyDVjYYqyjDFEzQZ7M/wE8GqKyDcnI3BiiIL3LI/ipMPLFdq:PC4NVNhc8YpqJYER65343nsipMP5qv0I

    Score
    9/10
    • Contacts a large (2447381) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

MITRE ATT&CK Enterprise v15

Tasks