General

  • Target

    1feebe88d742622b736541730e17c0141f223dc669e9894b7ddafaf870b1f898.elf

  • Size

    57KB

  • Sample

    240613-bfnwassbpm

  • MD5

    20db31488ce976fc43e894daa0329c63

  • SHA1

    eb0390223e8c451df5206a5e74187921539db624

  • SHA256

    1feebe88d742622b736541730e17c0141f223dc669e9894b7ddafaf870b1f898

  • SHA512

    afd5e1aeaca0628c2335d85edb0df140ada0cdfcc3ad997d521fa370079e402eebe2c29be0eb65796b71fb4caa7e24ef8f65c814388cbe9031f13e697960cc36

  • SSDEEP

    1536:+yXilUe1lsu4Zitmvi4+NmpcV5GpxXPtp:zEYatmvil5eXPD

Score
9/10

Malware Config

Targets

    • Target

      1feebe88d742622b736541730e17c0141f223dc669e9894b7ddafaf870b1f898.elf

    • Size

      57KB

    • MD5

      20db31488ce976fc43e894daa0329c63

    • SHA1

      eb0390223e8c451df5206a5e74187921539db624

    • SHA256

      1feebe88d742622b736541730e17c0141f223dc669e9894b7ddafaf870b1f898

    • SHA512

      afd5e1aeaca0628c2335d85edb0df140ada0cdfcc3ad997d521fa370079e402eebe2c29be0eb65796b71fb4caa7e24ef8f65c814388cbe9031f13e697960cc36

    • SSDEEP

      1536:+yXilUe1lsu4Zitmvi4+NmpcV5GpxXPtp:zEYatmvil5eXPD

    Score
    9/10
    • Contacts a large (75097) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

MITRE ATT&CK Enterprise v15

Tasks