c7b130f5b5a0c5d2fa4d202143d40393eccd2bcf563c7496a51ee267dd50bc16

Analysis

max time network
152s
platform
ubuntu-24.04_amd64
resource
ubuntu2404-amd64-20240523-en
resource tags

arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system
submitted
19-06-2024 01:02

Target

819e3765d5c40a66951c194f67cdb783e1a711cc3499dd44a43d1cfdec06af4d.elf
Size

41KB
MD5

6aec8134adf6a15aa80c393af04bab49
SHA1

81d7e8a5f53e4f3d780219ee47eb85de54c404cc
SHA256

819e3765d5c40a66951c194f67cdb783e1a711cc3499dd44a43d1cfdec06af4d
SHA512

7f45c3dd9a560f05df510ec03c988940a09fe897738335031d30ff1e7d02341a1d1df479b348fb4bc1605a7b63c2e22db383e3375a876f336c153432d89b27b4
SSDEEP

768:mvOd4URhNIM6/UGvXv6YSXwwV8uBnuksCENr94NF/Qm1xgsn6EfAzZqQHZQY7:mGd4IPIdUwXywweWnuksCWrkOEiZdQg

Score

9^/10

discovery

Contacts a large (100568) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046

Unexpected DNS network traffic destination 34 IoCs

Network traffic to other servers than the configured DNS servers was detected on the DNS port.

Processes:

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact