Overview

overview

9

Static

static

1

5710232603...68.elf

debian-12-armhf

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    5710232603fc96b92ada3cc40cfb24bdbca4391e057d3efdc2957b3d0b59b868.elf

  • Size

    97KB

  • Sample

    240811-bnacwaxhrp

  • MD5

    e61a00d197cc57712cbce5cdc5a6e939

  • SHA1

    45ba9114e60ae0577512c6d8d8f457fcb5bf5bf2

  • SHA256

    5710232603fc96b92ada3cc40cfb24bdbca4391e057d3efdc2957b3d0b59b868

  • SHA512

    705bf15971eb2a8ee5a6c247e8256e3fda80e3d98400edd244dd5c09a7979b85069cd648dffdf0406f21a6341548c1beaabde5975f51b61898d6a863e4bc5b2f

  • SSDEEP

    1536:yKncjqEDHkR8F5D/vp9xadr3p3oRWT9NNl34iPeD4ay+aAZcYHUrhb1P:Y68F9vpHadr3p3oReJeD1y+aAGnrx1P

Score
9/10
discovery

Malware Config

Targets

    • Target

      5710232603fc96b92ada3cc40cfb24bdbca4391e057d3efdc2957b3d0b59b868.elf

    • Size

      97KB

    • MD5

      e61a00d197cc57712cbce5cdc5a6e939

    • SHA1

      45ba9114e60ae0577512c6d8d8f457fcb5bf5bf2

    • SHA256

      5710232603fc96b92ada3cc40cfb24bdbca4391e057d3efdc2957b3d0b59b868

    • SHA512

      705bf15971eb2a8ee5a6c247e8256e3fda80e3d98400edd244dd5c09a7979b85069cd648dffdf0406f21a6341548c1beaabde5975f51b61898d6a863e4bc5b2f

    • SSDEEP

      1536:yKncjqEDHkR8F5D/vp9xadr3p3oRWT9NNl34iPeD4ay+aAZcYHUrhb1P:Y68F9vpHadr3p3oReJeD1y+aAGnrx1P

    Score
    9/10
    discovery

    • Contacts a large (66680) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Renames itself

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks