Overview

overview

9

Static

static

7

arm4-20240...25.elf

debian-9-armhf

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    arm4-20240625-1625.elf

  • Size

    63KB

  • Sample

    240625-twzxlszhrb

  • MD5

    9c84983d2eb4d5ad1026d082f513108e

  • SHA1

    597bc28858f2d93eaa68fb3dd7b3e22a239ce449

  • SHA256

    7169b85fb1d27e66cf9578e73a0fe68597c72d982c10f6a74e192192bd5ec030

  • SHA512

    49c8c5b0794eb6ef4549e039517bcc56941b9111f4b6a14588eff89b1110eb1c1876f45605fc538b1f1a7b1313c7309720d51243c2485a27a7f7ea09171510d2

  • SSDEEP

    1536:NHjvS6VXDGS0wlKlGIfMMRJXgmmZi2kkN2SYZR3P8QAtp:pjq6VXSS3l0EMXgpKSq3+tp

Score
9/10
discoveryupx

Malware Config

Targets

    • Target

      arm4-20240625-1625.elf

    • Size

      63KB

    • MD5

      9c84983d2eb4d5ad1026d082f513108e

    • SHA1

      597bc28858f2d93eaa68fb3dd7b3e22a239ce449

    • SHA256

      7169b85fb1d27e66cf9578e73a0fe68597c72d982c10f6a74e192192bd5ec030

    • SHA512

      49c8c5b0794eb6ef4549e039517bcc56941b9111f4b6a14588eff89b1110eb1c1876f45605fc538b1f1a7b1313c7309720d51243c2485a27a7f7ea09171510d2

    • SSDEEP

      1536:NHjvS6VXDGS0wlKlGIfMMRJXgmmZi2kkN2SYZR3P8QAtp:pjq6VXSS3l0EMXgpKSq3+tp

    Score
    9/10
    discovery

    • Contacts a large (645618) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks