Overview

overview

7

Static

static

5

boatnet.x86.elf

ubuntu-24.04-amd64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    boatnet.x86.elf

  • Size

    14KB

  • Sample

    241120-adrzha1jcl

  • MD5

    c59fbeee0774d04c95351dc2c2462499

  • SHA1

    f3d986ca1811f5a64d6b1c685e50eb29e207e04a

  • SHA256

    d552d3ff41490f9a491fdbb8ebe5a0088e5a7b29f68309acdfc21ec93394b2b6

  • SHA512

    e8b526357eef6953c37e1a338c3f3591cad2d9135f2d8c3a3c77fcf3193ebcc33fcff57ed0dd059f72337f736901c1cb5a871dc6b1fe352045e16256b1372fa9

  • SSDEEP

    384:Mslj7EIKl/shzNZ6q5ulqSHTgfviqv9v1R1K:UhSe4J3M

Score
7/10
linuxrootkitupx

Malware Config

Targets

    • Target

      boatnet.x86.elf

    • Size

      14KB

    • MD5

      c59fbeee0774d04c95351dc2c2462499

    • SHA1

      f3d986ca1811f5a64d6b1c685e50eb29e207e04a

    • SHA256

      d552d3ff41490f9a491fdbb8ebe5a0088e5a7b29f68309acdfc21ec93394b2b6

    • SHA512

      e8b526357eef6953c37e1a338c3f3591cad2d9135f2d8c3a3c77fcf3193ebcc33fcff57ed0dd059f72337f736901c1cb5a871dc6b1fe352045e16256b1372fa9

    • SSDEEP

      384:Mslj7EIKl/shzNZ6q5ulqSHTgfviqv9v1R1K:UhSe4J3M

    Score
    7/10
    rootkit

    • Loads a kernel module

      Loads a Linux kernel module, potentially to achieve persistence

      rootkit

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    behavioral1

MITRE ATT&CK Matrix

Tasks