Overview

overview

10

Static

static

10

8bb9ebdd28...24e4c5

linux_amd64

8bb9ebdd28...24e4c5

linux_mipsel

7

8bb9ebdd28...24e4c5

linux_mips

8bb9ebdd28...24e4c5

linux_armhf

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8bb9ebdd2895615bed869f5b3524e4c5

  • Size

    114KB

  • Sample

    211205-t8tw5afec4

  • MD5

    8bb9ebdd2895615bed869f5b3524e4c5

  • SHA1

    6efcbabd19b4b22e3440ec4ef69cae1bc16fb6f8

  • SHA256

    fb6070d198c11ca49197cf5917a889ea731cc0aa5c6e29af400f46831c22818c

  • SHA512

    a18e1e1cc7a7f25125d318406b6a322aa121f424e95d7dfd38e53d942fa49801b3e62c6b46a6472960dd5175783c2a4c29f008b41d27a34621aa6bd21af1ba47

Score
10/10
gafgytmirailinux

Malware Config

Targets

    • Target

      8bb9ebdd2895615bed869f5b3524e4c5

    • Size

      114KB

    • MD5

      8bb9ebdd2895615bed869f5b3524e4c5

    • SHA1

      6efcbabd19b4b22e3440ec4ef69cae1bc16fb6f8

    • SHA256

      fb6070d198c11ca49197cf5917a889ea731cc0aa5c6e29af400f46831c22818c

    • SHA512

      a18e1e1cc7a7f25125d318406b6a322aa121f424e95d7dfd38e53d942fa49801b3e62c6b46a6472960dd5175783c2a4c29f008b41d27a34621aa6bd21af1ba47

    Score
    7/10

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

    • Reads system network configuration

      Uses contents of /proc filesystem to enumerate network settings.

    behavioral1behavioral2behavioral3behavioral4

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

2
T1016

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks