sodinokibi | 54f249ddcab444a40cae6c0db0474ca8ffcd87af74819666fb6d2e72eecc3bc9 | Triage

Submit
Reports

Overview

overview

Static

static

bert

ubuntu-22.04-amd64

7

Sharing

General

Target

crypto.zip
Size

30KB
Sample

250318-x2d4wa1jx4
MD5

7a43ddaddfa35078a8ae028d525ef55e
SHA1

1c8645143af4ad5fa96ed68fb0b616a1eb0d7df1
SHA256

54f249ddcab444a40cae6c0db0474ca8ffcd87af74819666fb6d2e72eecc3bc9
SHA512

1395f5b533cac94c76e7636e581c5feeb3dda90fa58db7d940fec81477b60c860091f9ea2d216c55626f86f825f7a298dca25ebf27aade85f54ce529fd4d0ed3
SSDEEP

768:juVLfExX/Mxaa8zd6YDy6ln++1d0+2gbrnTv0:KVrExXfhzd63U++t24nTc

Score

10^/10

sodinokibi discovery linux

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

bert

Resource

ubuntu2204-amd64-20250307-en

ubuntu-22.04-amd64

5 signatures

300 seconds

Malware Config

Targets

- Target
  
  bert
- Size
  
  102KB
- MD5
  
  29a2cc59a9ebd334103ce146bca38522
- SHA1
  
  4a4a58abebe37642c1ed3411e3154d1f68bca4d3
- SHA256
  
  c7efe9b84b8f48b71248d40143e759e6fc9c6b7177224eb69e0816cc2db393db
- SHA512
  
  07537f8f8c6e89f188d0d0bce04ce5d8e51ef46cbbbb8b56bfa6fc2e0af094e9cdb89c14694e884c6644ff56d182263b9df60a62484df9b6d2df7d0ce1a9eb1f
- SSDEEP
  
  3072:Lb+XxBHGVJgggwgggwgggwgggwggggmOrIlp:LrIl
Score

7^/10

discovery
- Manipulates ESXi
  Manipulates ESXi.
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy