b6aa1f7389e69088903dfb085184352163a86cc5ae92c5bde3b378dad9055ef2 | Triage

Submit
Reports

Overview

overview

9

Static

static

1

5417455d70...8a.elf

ubuntu-18.04-amd64

9

Sharing

General

Target

5417455d70444b23ad00a45a304bbe8a.elf
Size

69KB
Sample

240613-wwf6ls1gpq
MD5

5417455d70444b23ad00a45a304bbe8a
SHA1

5cd8d874577b8eba78b0b8c1cd13ad0c51f7e479
SHA256

b6aa1f7389e69088903dfb085184352163a86cc5ae92c5bde3b378dad9055ef2
SHA512

0d11217167e9814f4a6ca5f93359cdce34348614d2d0f4ee4da23f553fe6235c37cc613026d18a1752ee8483315c2fdb2ac59379a72a85c833a1a3656b7844f4
SSDEEP

1536:CdyRV26pBwqh+H+8oWB9pQlkDmsW6j8FdlpSOr:CdoiNePWfpEPP

Score

9^/10

discovery linux

Static task

static1

Behavioral task

behavioral1

Sample

5417455d70444b23ad00a45a304bbe8a.elf

Resource

ubuntu1804-amd64-20240611-en

ubuntu-18.04-amd64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  5417455d70444b23ad00a45a304bbe8a.elf
- Size
  
  69KB
- MD5
  
  5417455d70444b23ad00a45a304bbe8a
- SHA1
  
  5cd8d874577b8eba78b0b8c1cd13ad0c51f7e479
- SHA256
  
  b6aa1f7389e69088903dfb085184352163a86cc5ae92c5bde3b378dad9055ef2
- SHA512
  
  0d11217167e9814f4a6ca5f93359cdce34348614d2d0f4ee4da23f553fe6235c37cc613026d18a1752ee8483315c2fdb2ac59379a72a85c833a1a3656b7844f4
- SSDEEP
  
  1536:CdyRV26pBwqh+H+8oWB9pQlkDmsW6j8FdlpSOr:CdoiNePWfpEPP
Score

9^/10

discovery
- Contacts a large (1307559) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Enumerates running processes
  Discovers information about currently running processes on the system
- Writes file to system bin folder
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Hijack Execution Flow

Privilege Escalation

Hijack Execution Flow

Defense Evasion

Impair Defenses

Hijack Execution Flow

Credential Access

Discovery

Network Service Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy