Sample name: | na.elf |
Analysis ID: | 1533408 |
MD5: | b9a0278d4290ade7806e250193e426b2 |
SHA1: | f91d8da8e70472abf586dd8e39f56d06352ff6c7 |
SHA256: | 74d809491ea023ac9fd3192d5102d63c495bf0b416bdabfae6917c810b61ca3d |
Tags: | elfuser-abuse_ch |
Infos: |
Score: | 60 |
Range: | 0 - 100 |
Whitelisted: | false |
AV Detection |
---|
Source: |
Avira: |
Source: |
ReversingLabs: |
Source: |
TCP traffic: |
||
Source: |
TCP traffic: |
||
Source: |
TCP traffic: |
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
||
Source: |
TCP traffic detected without corresponding DNS query: |
Source: |
String found in binary or memory: |
Source: |
Network traffic detected: |
||
Source: |
Network traffic detected: |
Source: |
Program segment: |
Source: |
Classification label: |
Data Obfuscation |
---|
Source: |
String containing UPX found: |
||
Source: |
String containing UPX found: |
||
Source: |
String containing UPX found: |
Source: |
Submission file: |
Source: |
Queries kernel information via 'uname': |
Jump to behavior |
Source: |
Binary or memory string: |
||
Source: |
Binary or memory string: |
||
Source: |
Binary or memory string: |
||
Source: |
Binary or memory string: |
No Screenshots
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
109.202.202.202 | unknown | Switzerland | 13030 | INIT7CH | false | |
91.189.91.43 | unknown | United Kingdom | 41231 | CANONICAL-ASGB | false | |
91.189.91.42 | unknown | United Kingdom | 41231 | CANONICAL-ASGB | false |