General

  • Target

    357c1f7cc005afb26f98b1702f50f3e5aced48cb2b7385c39c45470ba9af29f5.elf

  • Size

    74KB

  • Sample

    241110-cpvwmsxcqp

  • MD5

    dba1fe2fcfd095a8c8efe63da0c58a79

  • SHA1

    0a39b195924eebe435431515582ba77f14ed7ed2

  • SHA256

    357c1f7cc005afb26f98b1702f50f3e5aced48cb2b7385c39c45470ba9af29f5

  • SHA512

    622d1e94c990fd12fd9f94b5367041ecbd595d6b883237d991dbf488ab7e5529eac7632fddec821af14620131c6331da397905cc340347bbc769a3f579ee592f

  • SSDEEP

    1536:REyfecuDbjdpKc1iIhOCt1izHcmkGgr7ro7rWlrSbVL4ZbP+KVp:1W10ImkGggL4ZCKD

Score
9/10

Malware Config

Targets

    • Target

      357c1f7cc005afb26f98b1702f50f3e5aced48cb2b7385c39c45470ba9af29f5.elf

    • Size

      74KB

    • MD5

      dba1fe2fcfd095a8c8efe63da0c58a79

    • SHA1

      0a39b195924eebe435431515582ba77f14ed7ed2

    • SHA256

      357c1f7cc005afb26f98b1702f50f3e5aced48cb2b7385c39c45470ba9af29f5

    • SHA512

      622d1e94c990fd12fd9f94b5367041ecbd595d6b883237d991dbf488ab7e5529eac7632fddec821af14620131c6331da397905cc340347bbc769a3f579ee592f

    • SSDEEP

      1536:REyfecuDbjdpKc1iIhOCt1izHcmkGgr7ro7rWlrSbVL4ZbP+KVp:1W10ImkGggL4ZCKD

    Score
    9/10
    • Contacts a large (93694) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Deletes itself

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks hardware identifiers (DMI)

      Checks DMI information which indicate if the system is a virtual machine.

MITRE ATT&CK Enterprise v15

Tasks