General
-
Target
d5aab96628048266bc8aacbabd0a0876
-
Size
1.2MB
-
Sample
211001-pscwfsbggm
-
MD5
d5aab96628048266bc8aacbabd0a0876
-
SHA1
c04067f7ad99d272279a0e60eb6a08cdeb7ebb49
-
SHA256
1d350024fe02082af1292a08153754e73f9755e0c94790bebed57646e123bba0
-
SHA512
b0f9d7e0bebe92308b6d0b5fb6b44682a5ada60c80517b1b73b4502f80633f69b699c5fe3893483733d0ee78dc80c40e185c7a47d3f24dd75b6b8c860dd15fc3
Malware Config
Targets
-
-
Target
d5aab96628048266bc8aacbabd0a0876
-
Size
1.2MB
-
MD5
d5aab96628048266bc8aacbabd0a0876
-
SHA1
c04067f7ad99d272279a0e60eb6a08cdeb7ebb49
-
SHA256
1d350024fe02082af1292a08153754e73f9755e0c94790bebed57646e123bba0
-
SHA512
b0f9d7e0bebe92308b6d0b5fb6b44682a5ada60c80517b1b73b4502f80633f69b699c5fe3893483733d0ee78dc80c40e185c7a47d3f24dd75b6b8c860dd15fc3
Score10/10-
suricata: ET MALWARE Linux/BillGates Checkin Response
suricata: ET MALWARE Linux/BillGates Checkin Response
-
Writes file to system bin folder
-
Write file to user bin folder
-
Reads runtime system information
Reads data from /proc virtual filesystem.
-
Writes file to tmp directory
Malware often drops required files in the /tmp directory.
-