【ブログ】
◆脆弱性「SambaCry」を利用するLinuxマルウェアを新たに確認。Linux 利用者は至急更新を (Trendmicro, 2017/07/20)
http://blog.trendmicro.co.jp/archives/15470
【インディケータ情報】
■ハッシュ情報(Sha256)
- c27594b1a1ecee6a62adbaee5b00bad8e3540fe98ff3bac17fef03e0ebd62914
- 516bafdede5e7a019a71028a7125f98190ee7ab71d03bc3041c9943324a78df5
- 11f47c90393082e7fdc4213d3b888ef8b7c121a86658077465b03bb7857bc540
【マルウェア情報】
■c27594b1a1ecee6a62adbaee5b00bad8e3540fe98ff3bac17fef03e0ebd62914
MD5 | b814c8571de7304312d0834b907eda11 |
SHA1 | 7e12f038b373b088bc0dc665584d9958ca345845 |
SHA256 | c27594b1a1ecee6a62adbaee5b00bad8e3540fe98ff3bac17fef03e0ebd62914 |
SHA512 | |
SSDEEP | 192:OuB+j8pYE0dtLn1hti+GC0tvhksgGaipBi8p2EWXLF:OuH0PLnMV7vyCp8F |
authentihash | |
imphash | |
File Size | 70648 bytes |
File Type | ELF |
コンパイル日時 | |
Debug Path | |
File Name | |
File Path | |
生成ファイル | |
特徴 | |
参考情報 |
■516bafdede5e7a019a71028a7125f98190ee7ab71d03bc3041c9943324a78df5
MD5 | 3059aeb2ab71eb3416d2a02366e3df25 |
SHA1 | a6440cc3da40a68eddbe9710200b4c075a6b9ee0 |
SHA256 | 516bafdede5e7a019a71028a7125f98190ee7ab71d03bc3041c9943324a78df5 |
SHA512 | |
SSDEEP | 192:g8pWEyn2HM9s8tY/LMYHF1mB3aB3t8aK0JyGq/HCynnc2EWXhA:D+2HM91q3HF1mB3aB3t8afJy7/imA |
authentihash | |
imphash | |
File Size | 72024 bytes |
File Type | ELF |
コンパイル日時 | |
Debug Path | |
File Name | |
File Path | |
生成ファイル | |
特徴 | |
参考情報 |
■11f47c90393082e7fdc4213d3b888ef8b7c121a86658077465b03bb7857bc540
MD5 | f886a7cbdc5e4bf2179e6f099f5f837c |
SHA1 | d9cd9dc48fc416fb7111697094776acd2b90da45 |
SHA256 | 11f47c90393082e7fdc4213d3b888ef8b7c121a86658077465b03bb7857bc540 |
SHA512 | dfac39f41e5f45e403de5ada356690d8c306866721641a10e11666a005f3e6746650d33d689107cfc67329034322011992b05b8cf63e4d291391d04ed251a604 |
SSDEEP | 192:tqzY8p5EyEKv8Ij3+h8EmiRqe0dailKw:tq7EyEWB3+hnmom3V |
authentihash | |
imphash | |
File Size | 12608 bytes |
File Type | ELF |
コンパイル日時 | |
Debug Path | |
File Name | |
File Path | |
生成ファイル | |
特徴 | |
参考情報 | https://virustotal.com/en/file/11f47c90393082e7fdc4213d3b888ef8b7c121a86658077465b03bb7857bc540/analysis/ |
https://malwr.com/analysis/NjM5MTlmMDFkYzliNDkwY2EzNWJkYjIyYzBlYjFiNzc/ | |
https://otx.alienvault.com/pulse/596e14ba2d213719875a8563/ | |
https://detux.org/report.php?sha256=11f47c90393082e7fdc4213d3b888ef8b7c121a86658077465b03bb7857bc540 |