Analysis Overview
score
7/10
SHA256
58f373fdfc864907ca44650758075cbf97b05030bed69aef92a2ec0c6a3fd56b
Threat Level: Shows suspicious behavior
The file 9e7ac451b630d524c799f12debede445.elf was found to be: Shows suspicious behavior.
Malicious Activity Summary
UPX packed file
MITRE ATT&CK
N/A
Analysis: static1
Detonation Overview
Reported
2024-06-14 07:03
Signatures
UPX packed file
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-14 07:03
Reported
2024-06-14 07:05
Platform
ubuntu2204-amd64-20240611-en
Max time network
131s
Command Line
N/A
Signatures
N/A
Processes
N/A
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| US | 82.153.68.38:3778 | tcp | |
| US | 8.8.8.8:53 | _http._tcp.security.ubuntu.com | udp |
| US | 8.8.8.8:53 | _http._tcp.se.archive.ubuntu.com | udp |
| US | 8.8.8.8:53 | security.ubuntu.com | udp |
| US | 8.8.8.8:53 | security.ubuntu.com | udp |
| US | 8.8.8.8:53 | se.archive.ubuntu.com | udp |
| US | 8.8.8.8:53 | se.archive.ubuntu.com | udp |
| GB | 185.125.190.81:80 | security.ubuntu.com | tcp |
| SE | 194.71.11.173:80 | se.archive.ubuntu.com | tcp |
| US | 8.8.8.8:53 | _http._tcp.laotzu.ftp.acc.umu.se | udp |
| US | 8.8.8.8:53 | laotzu.ftp.acc.umu.se | udp |
| US | 8.8.8.8:53 | laotzu.ftp.acc.umu.se | udp |
| US | 8.8.8.8:53 | _http._tcp.saimei.ftp.acc.umu.se | udp |
| US | 8.8.8.8:53 | saimei.ftp.acc.umu.se | udp |
| US | 8.8.8.8:53 | saimei.ftp.acc.umu.se | udp |
| SE | 194.71.11.138:80 | saimei.ftp.acc.umu.se | tcp |
| US | 8.8.8.8:53 | _http._tcp.gemmei.ftp.acc.umu.se | udp |
| US | 8.8.8.8:53 | gemmei.ftp.acc.umu.se | udp |
| US | 8.8.8.8:53 | gemmei.ftp.acc.umu.se | udp |
| US | 1.1.1.1:53 | udp | |
| US | 1.1.1.1:53 | udp | |
| SE | 194.71.11.166:80 | laotzu.ftp.acc.umu.se | tcp |
| US | 1.1.1.1:53 | gemmei.ftp.acc.umu.se | udp |
| US | 1.1.1.1:53 | gemmei.ftp.acc.umu.se | udp |
| SE | 194.71.11.137:80 | gemmei.ftp.acc.umu.se | tcp |
Files
N/A