5b5f8c4611510c11d413cb2bef70867e584f003210968f97e0c54e6d37ba8d8d | Triage

Analysis

max time kernel
9673s
max time network
124s
platform
linux_amd64
resource
ubuntu-amd64
submitted
11-03-2021 14:54

Sharing

Report Analysis Logs

General

Target

5b5f8c4611510c11d413cb2bef70867e584f003210968f97e0c54e6d37ba8d8d
Size

47KB
MD5

0fbb54af3585af0a14a3797580b78468
SHA1

81e5ed2bb26ec3df4492185add7395b1831497d4
SHA256

5b5f8c4611510c11d413cb2bef70867e584f003210968f97e0c54e6d37ba8d8d
SHA512

0356ea088aef49b0d51d601848fdaa11ef76485fd78d3d018713aecbc0e81e2cf20d48b4a26f03247525185a765366c7521330b353534d77a8058e562640f873

Score

8^/10

Malware Config

Signatures

Modifies hosts file 1 IoCs
Adds to hosts file used for mapping hosts to IP addresses.

Processes:

description ioc

/etc/hosts /etc/hosts
Writes DNS configuration 1 TTPs 1 IoCs
Writes data to DNS resolver config file.

Dynamic Resolution
T1568

Processes:

description ioc

/etc/resolv.conf /etc/resolv.conf

./5b5f8c4611510c11d413cb2bef70867e584f003210968f97e0c54e6d37ba8d8d
./5b5f8c4611510c11d413cb2bef70867e584f003210968f97e0c54e6d37ba8d8d
1⤵
PID:562

Network

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Dynamic Resolution

Impact

Replay Monitor

Loading Replay Monitor...