Overview

overview

9

Static

static

3a55eeebc1...319392

linux_amd64

3a55eeebc1...319392

linux_mipsel

9

3a55eeebc1...319392

linux_mips

3a55eeebc1...319392

linux_armhf

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3a55eeebc14c0e3baa0c7a087a319392

  • Size

    90KB

  • Sample

    211205-t79aesfeb5

  • MD5

    3a55eeebc14c0e3baa0c7a087a319392

  • SHA1

    fd04456a72c9aba809eb8ec40d8ddaccd723046a

  • SHA256

    e2b89e84667aa5cf403d62a2502b36bdb1e85a9807d214d44708c13065d9f430

  • SHA512

    6276381d5edb65f8cd2c1e15c7c6f0d1dcb3a0e5639888836c44e456ded6d92e9b6373e611f66dc362b8e35421dc094878e4ccfa39811d07a743ef02bb92926d

Score
9/10
linux

Malware Config

Targets

    • Target

      3a55eeebc14c0e3baa0c7a087a319392

    • Size

      90KB

    • MD5

      3a55eeebc14c0e3baa0c7a087a319392

    • SHA1

      fd04456a72c9aba809eb8ec40d8ddaccd723046a

    • SHA256

      e2b89e84667aa5cf403d62a2502b36bdb1e85a9807d214d44708c13065d9f430

    • SHA512

      6276381d5edb65f8cd2c1e15c7c6f0d1dcb3a0e5639888836c44e456ded6d92e9b6373e611f66dc362b8e35421dc094878e4ccfa39811d07a743ef02bb92926d

    Score
    9/10

    • Modifies the Watchdog daemon

      Malware like Mirai modify the Watchdog to prevent it restarting an infected system.

    • Reads runtime system information

      Reads data from /proc virtual filesystem.

    behavioral1behavioral2behavioral3behavioral4

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

1
T1562

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks