mrblack | aa7807e6f0b7a0a5bb859b302b9eb2604040f5f4a84414ea1baa93b377b42ca8 | Triage

Submit
Reports

Overview

overview

Static

static

66003fc2cf...558d1c

linux_amd64

Sharing

General

Target

66003fc2cfd270acf3745b613c558d1c
Size

1.2MB
Sample

211229-nwrncaddaq
MD5

66003fc2cfd270acf3745b613c558d1c
SHA1

40d4f4f457907b7a887bec47c519c54a1fadc06d
SHA256

aa7807e6f0b7a0a5bb859b302b9eb2604040f5f4a84414ea1baa93b377b42ca8
SHA512

16ec229d16295dce5b44a9b367131baa58813d06f412a5020c71111bb4a2db51b7dd8024f02d77e62158a3cecc5985fca66decd2bcb00c4e8841699a8456a372

Score

10^/10

mrblack linux suricata

Static task

static1

Behavioral task

behavioral1

Sample

66003fc2cfd270acf3745b613c558d1c

Resource

ubuntu1804-amd64-en-20211208

linux_amd64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  66003fc2cfd270acf3745b613c558d1c
- Size
  
  1.2MB
- MD5
  
  66003fc2cfd270acf3745b613c558d1c
- SHA1
  
  40d4f4f457907b7a887bec47c519c54a1fadc06d
- SHA256
  
  aa7807e6f0b7a0a5bb859b302b9eb2604040f5f4a84414ea1baa93b377b42ca8
- SHA512
  
  16ec229d16295dce5b44a9b367131baa58813d06f412a5020c71111bb4a2db51b7dd8024f02d77e62158a3cecc5985fca66decd2bcb00c4e8841699a8456a372
Score

10^/10

suricata
- suricata: ET MALWARE Linux/BillGates Checkin Response
  suricata: ET MALWARE Linux/BillGates Checkin Response
  suricata
- Writes file to system bin folder
- Write file to user bin folder
- Reads runtime system information
  Reads data from /proc virtual filesystem.
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hijack Execution Flow

Privilege Escalation

Hijack Execution Flow

Defense Evasion

Hijack Execution Flow

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy