General

  • Target

    eede2e4848037713f69e56d4dbdefac2a57c926b97dce54155bcb538e94ceb11.elf

  • Size

    102KB

  • Sample

    241106-egxflsvdqq

  • MD5

    7837e69aa511643a63674ee2b5dc5ea2

  • SHA1

    0eee4354fcd05870ca185e09f21b098d2bdd70ae

  • SHA256

    eede2e4848037713f69e56d4dbdefac2a57c926b97dce54155bcb538e94ceb11

  • SHA512

    2f235382b9098f2963e46363d1d49a226ff25e5d93f095c11309503498f0e3b86ee1e9e6ae91e5713a32b48fbbd206bc707fefc303f5f12ac0fdf7c76dbc37f2

  • SSDEEP

    1536:anQ38rNWawuTkXUB/Y8PwNQ34ojguxtH2dFpESoIxi:aQ38rwuTkkxRsQ3djgqRQRXi

Malware Config

Targets

    • Target

      eede2e4848037713f69e56d4dbdefac2a57c926b97dce54155bcb538e94ceb11.elf

    • Size

      102KB

    • MD5

      7837e69aa511643a63674ee2b5dc5ea2

    • SHA1

      0eee4354fcd05870ca185e09f21b098d2bdd70ae

    • SHA256

      eede2e4848037713f69e56d4dbdefac2a57c926b97dce54155bcb538e94ceb11

    • SHA512

      2f235382b9098f2963e46363d1d49a226ff25e5d93f095c11309503498f0e3b86ee1e9e6ae91e5713a32b48fbbd206bc707fefc303f5f12ac0fdf7c76dbc37f2

    • SSDEEP

      1536:anQ38rNWawuTkXUB/Y8PwNQ34ojguxtH2dFpESoIxi:aQ38rwuTkkxRsQ3djgqRQRXi

    • Contacts a large (95634) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Loads a kernel module

      Loads a Linux kernel module, potentially to achieve persistence

    • Write file to user bin folder

MITRE ATT&CK Enterprise v15

Tasks