General

  • Target

    4dc9994d79ccad3e2cf93427f1294419598fdfa71d29a9ea1bdb325aa032fd91.elf

  • Size

    122KB

  • Sample

    241106-c28y2atfjp

  • MD5

    4a058a5cdabc97b4a99336a30f20659d

  • SHA1

    a7ac9f05cf2fb639100181c355e804a3f3d450b4

  • SHA256

    4dc9994d79ccad3e2cf93427f1294419598fdfa71d29a9ea1bdb325aa032fd91

  • SHA512

    be6ed1a5908e9e36a36c234f403e79046ab8cea466d7955d93c87dd4653cd54c3e5b897b8e64d19c1869e0f48bb1e9925a470fc7c144e55fdc677be508c93366

  • SSDEEP

    3072:4Az8n2q9u/uyYChhBoaF1QKYdnCC3O0rsR5iKoged:4Az8n2yWuLuhBoc1c3HrE4Pged

Malware Config

Targets

    • Target

      4dc9994d79ccad3e2cf93427f1294419598fdfa71d29a9ea1bdb325aa032fd91.elf

    • Size

      122KB

    • MD5

      4a058a5cdabc97b4a99336a30f20659d

    • SHA1

      a7ac9f05cf2fb639100181c355e804a3f3d450b4

    • SHA256

      4dc9994d79ccad3e2cf93427f1294419598fdfa71d29a9ea1bdb325aa032fd91

    • SHA512

      be6ed1a5908e9e36a36c234f403e79046ab8cea466d7955d93c87dd4653cd54c3e5b897b8e64d19c1869e0f48bb1e9925a470fc7c144e55fdc677be508c93366

    • SSDEEP

      3072:4Az8n2q9u/uyYChhBoaF1QKYdnCC3O0rsR5iKoged:4Az8n2yWuLuhBoc1c3HrE4Pged

    Score
    9/10
    • Contacts a large (95002) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Loads a kernel module

      Loads a Linux kernel module, potentially to achieve persistence

MITRE ATT&CK Enterprise v15

Tasks