34.0.0 Boulder Opal
IR
553490
CloudBasic
01:27:48
15/01/2022
8p2APHSDxx
defaultlinuxfilecookbook.jbs
Ubuntu Linux 20.04 x64 (Kernel 5.4.0-72, Firefox 91.0, Evince Document Viewer 3.36.10, LibreOffice 6.4.7.2, OpenJDK 11.0.11)
LINUX
adcb553ec947029a484f9f4995ffbe0a
b7c64b1604b6847888619ae3b2af85faa9ffa741
6631ba2378a01aade3a4f46cae3b80a33bbf06bae53412e27c72d23f1fcc9397
ELF Executable and Linkable format (generic) (4004/1) 100.00%
true
false
false
false
76
0
100
202.240.10.100
211.23.120.136
178.198.88.188
37.252.74.80
217.220.244.241
212.143.94.167
82.47.250.59
31.219.188.58
249.63.217.224
181.222.227.132
70.141.98.97
220.56.37.166
83.120.11.184
84.76.228.163
113.3.233.8
70.108.52.36
211.192.59.240
163.132.253.75
177.237.65.14
62.107.7.104
148.223.139.78
141.179.119.106
201.159.85.21
176.165.90.113
91.40.119.89
53.107.17.53
125.202.66.136
141.21.2.208
43.110.126.181
84.252.55.41
141.174.45.213
154.79.94.130
90.102.156.246
73.161.10.124
47.208.204.100
80.81.167.38
104.247.124.210
60.117.131.60
200.163.89.110
135.222.21.228
82.219.83.106
119.111.187.52
161.135.98.184
63.234.234.118
92.204.156.190
74.240.110.136
76.253.229.96
202.22.122.95
1.255.125.250
173.33.198.208
89.146.240.36
37.234.77.118
69.14.149.115
113.10.164.169
209.220.117.178
182.115.198.175
93.171.122.42
2.67.68.255
178.5.88.54
179.218.233.71
254.102.133.230
85.246.144.11
161.104.78.249
195.239.166.37
150.23.109.183
189.22.73.157
152.201.10.86
43.2.122.58
108.232.93.2
206.123.203.244
31.7.153.206
177.254.188.54
41.186.146.32
171.57.213.144
16.175.78.233
190.5.112.131
217.193.146.101
93.129.239.86
176.196.224.100
85.45.213.112
175.236.53.194
122.202.99.11
67.146.27.203
101.211.73.136
117.91.17.152
1.209.161.81
8.102.25.77
220.108.43.145
59.79.11.124
14.239.224.160
250.255.172.193
180.139.77.69
73.215.161.119
165.77.133.148
130.0.91.47
207.173.38.45
83.141.103.223
2.215.62.55
93.130.166.68
71.66.146.46
Sample is packed with UPX
Snort IDS alert for network traffic (e.g. based on Emerging Threat rules)
Uses known network protocols on non-standard ports
Yara detected Mirai
Sample tries to kill multiple processes (SIGKILL)
Multi AV Scanner detection for submitted file