88eec0fde18154b67d32b95216d1c36882c481bef454b3540d5bfc9ea858684c | Triage

Submit
Reports

Overview

overview

Static

static

611a64ef78...6a.elf

debian-12-armhf

9

Analysis

max time network
152s
platform
debian-12_armhf
resource
debian12-armhf-20240221-en
resource tags

arch:armhfimage:debian12-armhf-20240221-enkernel:6.1.0-17-armmp-lpaelocale:en-usos:debian-12-armhfsystem
submitted
23-06-2024 13:25

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

611a64ef78208e02cb080abcae3b9c6a.elf

Resource

debian12-armhf-20240221-en

debian-12-armhf

2 signatures

150 seconds

Report Analysis Logs

General

Target

611a64ef78208e02cb080abcae3b9c6a.elf
Size

164KB
MD5

611a64ef78208e02cb080abcae3b9c6a
SHA1

1dd82a416a612bdb23321485cb37d94d07fa5064
SHA256

88eec0fde18154b67d32b95216d1c36882c481bef454b3540d5bfc9ea858684c
SHA512

77138e7fd68fcc7b057973e641cf026bb5bd46b1d8316fc42aec31aa620dde795037d6b939bce064cbdc1c9bfb89e55821f848161c34126cde58da16e5745ed9
SSDEEP

3072:OhNHG4r7t4G1dE3a3wjo7Dwe8AQoIUYSwbZn5R6NhnM/9jGs3b:WN5a4i3a3wjo7Dr8AHLwR5R6NxM/9jGs

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (23842) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046

Processes

Network

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy