Overview

overview

9

Static

static

7

682895d669...e7.elf

debian-9-armhf

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    95cd7abbbc21cfa67316f6f66cfdb7d6.bin

  • Size

    69KB

  • Sample

    240620-d8js6awhqd

  • MD5

    bed207c5b3e32cc8596da7c398db7725

  • SHA1

    a6aac7a3e80926230b261f482dc45981e1f15ba4

  • SHA256

    f2f274fd6ceff9d384e83d48e6922876fe4a75a1334c2b29190cee8887ffb861

  • SHA512

    0e3d352fde4ba2f27cc1a5f18d052a022c34f38f77501eb348087277dfc3c45692e339f81fb78296c99deeec49d8a123b750583c465aa6cb827ce299daba28a8

  • SSDEEP

    1536:BzzkX/m1OGKwbFkMs+9c2Nw8SaRP9zViYRVfmY2dAJz84mCrq:2XecGVbuMXc3O99RNbLZZmCO

Score
9/10
discoveryupx

Malware Config

Targets

    • Target

      682895d669c00cb40171dccf95804c26d0f621003a1cc92425285ca42d385ae7.elf

    • Size

      71KB

    • MD5

      95cd7abbbc21cfa67316f6f66cfdb7d6

    • SHA1

      a13f71748fd5a16a2d1053f03c6949ecf739f833

    • SHA256

      682895d669c00cb40171dccf95804c26d0f621003a1cc92425285ca42d385ae7

    • SHA512

      2803514af043547e99f3ffc2e1923315982e6bbd72d10b09d57636ebb93f1c1dd60f2ac8f69fe027b7c914097d7a6f05829c5d5922b93b48b8d5c654769fcb73

    • SSDEEP

      1536:tYr4t+G4eCfOJ1zuxiFkmlUmsOAnP8fF5wdjKrRnBUqTAlgcVzf:6r4t+veJLlUp8nGKrdBhTAzf

    Score
    9/10
    discovery

    • Contacts a large (93504) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks