General

  • Target

    85b8915b635adbab46e45999f61f4ea93bba5597d1b22c3dcdb585320ca2d70a.elf

  • Size

    56KB

  • Sample

    241110-c6kr1a1jgm

  • MD5

    28219bf16d9d56d66ab6939eac81d10d

  • SHA1

    78e283feb82b53b90afc3715e8d09ed0b94f0fa0

  • SHA256

    85b8915b635adbab46e45999f61f4ea93bba5597d1b22c3dcdb585320ca2d70a

  • SHA512

    4e9833e313439950e490bbbce0fa2818941d64fa309558f45f145fcedf7c26fe3ab1024bc1836896f3c76715ca3c812cb5f8091f0f51a159818800949dbbe138

  • SSDEEP

    768:MpcoW65mEgCq31UhyblACEgqlC/CAKNqdxQ/h/qWLosyfWXkpFArHIW8w291:0cbLCqS0JElNUS/PLR0FF

Score
9/10

Malware Config

Targets

    • Target

      85b8915b635adbab46e45999f61f4ea93bba5597d1b22c3dcdb585320ca2d70a.elf

    • Size

      56KB

    • MD5

      28219bf16d9d56d66ab6939eac81d10d

    • SHA1

      78e283feb82b53b90afc3715e8d09ed0b94f0fa0

    • SHA256

      85b8915b635adbab46e45999f61f4ea93bba5597d1b22c3dcdb585320ca2d70a

    • SHA512

      4e9833e313439950e490bbbce0fa2818941d64fa309558f45f145fcedf7c26fe3ab1024bc1836896f3c76715ca3c812cb5f8091f0f51a159818800949dbbe138

    • SSDEEP

      768:MpcoW65mEgCq31UhyblACEgqlC/CAKNqdxQ/h/qWLosyfWXkpFArHIW8w291:0cbLCqS0JElNUS/PLR0FF

    Score
    9/10
    • Contacts a large (92278) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Deletes itself

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks hardware identifiers (DMI)

      Checks DMI information which indicate if the system is a virtual machine.

MITRE ATT&CK Enterprise v15

Tasks