0ce5bdeadb6d824061af3751e61b54577f4430d1985b3dce38b6a4081ad59fe9 | Triage

Sharing

General

Target

0ce5bdeadb6d824061af3751e61b54577f4430d1985b3dce38b6a4081ad59fe9
Size

86KB
Sample

220218-29745sdah7
MD5

3cb2272e9a121654edd2b7338c66d591
SHA1

1fa194a12de67b7f83b1349246b504b31d0ef12b
SHA256

0ce5bdeadb6d824061af3751e61b54577f4430d1985b3dce38b6a4081ad59fe9
SHA512

44e7783f4599f7d3716cd909eb3c8dae86786bedd36be4bcdede20dbab89743e521b49329b254f9b211fc08fb38e5891e3547273084fe4162a871e7e65133082

Score

7^/10

linux

Malware Config

Targets

- Target
  
  0ce5bdeadb6d824061af3751e61b54577f4430d1985b3dce38b6a4081ad59fe9
- Size
  
  86KB
- MD5
  
  3cb2272e9a121654edd2b7338c66d591
- SHA1
  
  1fa194a12de67b7f83b1349246b504b31d0ef12b
- SHA256
  
  0ce5bdeadb6d824061af3751e61b54577f4430d1985b3dce38b6a4081ad59fe9
- SHA512
  
  44e7783f4599f7d3716cd909eb3c8dae86786bedd36be4bcdede20dbab89743e521b49329b254f9b211fc08fb38e5891e3547273084fe4162a871e7e65133082
Score

7^/10
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
- Reads system network configuration
  Uses contents of /proc filesystem to enumerate network settings.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1