0dfd6fe0c1cdd8682fe49357829f96069d81e5ca20b2876df3cf70f5bdb96e40 | Triage

Submit
Reports

Overview

overview

Static

static

0dfd6fe0c1...40.elf

debian-9-armhf

9

Analysis

max time network
156s
platform
debian-9_armhf
resource
debian9-armhf-20240226-en
resource tags

arch:armhfimage:debian9-armhf-20240226-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
submitted
07-06-2024 01:07

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0dfd6fe0c1cdd8682fe49357829f96069d81e5ca20b2876df3cf70f5bdb96e40.elf

Resource

debian9-armhf-20240226-en

debian-9-armhf

2 signatures

150 seconds

Report Analysis Logs

General

Target

0dfd6fe0c1cdd8682fe49357829f96069d81e5ca20b2876df3cf70f5bdb96e40.elf
Size

78KB
MD5

cce55ddfde49fe235359f86eff28f2e1
SHA1

b059f3255ec6034d44fbad22e48ee78d10d0a166
SHA256

0dfd6fe0c1cdd8682fe49357829f96069d81e5ca20b2876df3cf70f5bdb96e40
SHA512

9a9de6b59483cd06794a538d64028802a3d0937403ed5f44ad2c7f3fd0ca337133a20006572617c3c3b199cb1596b37c4947fa21cbc91acbfdf01b3ae82878f5
SSDEEP

1536:9iSQYpo7DcGlCWR31bSgn+5rvMxSZ4RPFAiCX4hS6rE+kEvNcwbZnJ:OAAcGlRlbRn+5rvc0aPFAi8cS6rEYNc0

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (23354) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046

Processes

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy