General
-
Target
a22a9cfbcbb2b95107924a25e674454f
-
Size
1.2MB
-
Sample
211002-rl9yqaeefr
-
MD5
a22a9cfbcbb2b95107924a25e674454f
-
SHA1
ec8112e13d80847904cdb6ab152f7a2cd468777b
-
SHA256
cbb5757f4dd400f3e548dc8bb01e66d52814d71595c8088d25cdf2a50d0975d3
-
SHA512
b546e8a873b2bd1a6bab94e40bf2fcffc6c7caf69cfdb32c3516478c12ac2e1acaba0633c022bb4bb0da1c794cd165360aff2880087fe60ddedefc7032ee886b
Malware Config
Targets
-
-
Target
a22a9cfbcbb2b95107924a25e674454f
-
Size
1.2MB
-
MD5
a22a9cfbcbb2b95107924a25e674454f
-
SHA1
ec8112e13d80847904cdb6ab152f7a2cd468777b
-
SHA256
cbb5757f4dd400f3e548dc8bb01e66d52814d71595c8088d25cdf2a50d0975d3
-
SHA512
b546e8a873b2bd1a6bab94e40bf2fcffc6c7caf69cfdb32c3516478c12ac2e1acaba0633c022bb4bb0da1c794cd165360aff2880087fe60ddedefc7032ee886b
Score10/10-
suricata: ET MALWARE Linux/BillGates Checkin Response
suricata: ET MALWARE Linux/BillGates Checkin Response
-
Writes file to system bin folder
-
Write file to user bin folder
-
Reads runtime system information
Reads data from /proc virtual filesystem.
-
Writes file to tmp directory
Malware often drops required files in the /tmp directory.
-