Overview

overview

7

Static

static

1

123.i686

ubuntu-22.04-amd64

7

Resubmissions

21-01-2025 18:29

250121-w48wlaxjhn 7

20-01-2025 15:39

250120-s3qf3swpfp 7

20-01-2025 15:18

250120-spxcgawjhl 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    123.i686

  • Size

    64KB

  • Sample

    250120-spxcgawjhl

  • MD5

    515d44449575fb5f6e1cc10698c09189

  • SHA1

    a27023ffcc67f3ffe6a80f3d8a4b1cca886d363d

  • SHA256

    a262c2a7c581c95058ddfd0bcd30c20e856e036d5170f3c625d76e221db6d882

  • SHA512

    491166e8bc8858c6b83283179e31e12501d19b2c0c80d49a11e5f6b3a6ad5de3b6b66178c91aacbb109e51bfe3719c98e5b0d8f8f8f6db4112c00de04e9b0cd6

  • SSDEEP

    768:JD3UKOqcPkfKmL0XSodeE/fg7BWo0vjwZ2nvP3NtA+Th8HRolbzF12LDm3oRyXsg:FkbkiC4J3n8BWDN3ZSS1uyXskmXsU

Score
7/10
defense_evasiondiscoverylinux

Malware Config

Targets

    • Target

      123.i686

    • Size

      64KB

    • MD5

      515d44449575fb5f6e1cc10698c09189

    • SHA1

      a27023ffcc67f3ffe6a80f3d8a4b1cca886d363d

    • SHA256

      a262c2a7c581c95058ddfd0bcd30c20e856e036d5170f3c625d76e221db6d882

    • SHA512

      491166e8bc8858c6b83283179e31e12501d19b2c0c80d49a11e5f6b3a6ad5de3b6b66178c91aacbb109e51bfe3719c98e5b0d8f8f8f6db4112c00de04e9b0cd6

    • SSDEEP

      768:JD3UKOqcPkfKmL0XSodeE/fg7BWo0vjwZ2nvP3NtA+Th8HRolbzF12LDm3oRyXsg:FkbkiC4J3n8BWDN3ZSS1uyXskmXsU

    Score
    7/10
    defense_evasiondiscovery

    • Deletes itself

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Reads MAC address of network interface

      Fetches the MAC address of active network interfaces. May be used to detect known values for hypervisors.

      defense_evasiondiscovery

    • Reads network interface configuration

      Fetches information about one or more active network interfaces.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks