mrblack | da2a3acb7a40ceca3d89f84583703ddc1003a5448e9b1dcda7dea986a4d84f82 | Triage

Submit
Reports

Overview

overview

Static

static

da2a3acb7a...d84f82

linux_amd64

Sharing

General

Target

da2a3acb7a40ceca3d89f84583703ddc1003a5448e9b1dcda7dea986a4d84f82
Size

1.2MB
Sample

220218-g6q18scecm
MD5

6205df8b077b2ca968077127dd03ab84
SHA1

4db1c73a4a33696da9208cc220f8262fb90767af
SHA256

da2a3acb7a40ceca3d89f84583703ddc1003a5448e9b1dcda7dea986a4d84f82
SHA512

9b0ec70890246e2cde9d2df1faabac9fabfd9fe80a7649200f4ae9b81dcbe9cd7c0788fac19ebd5e05be1475a62ffa3b0df0fc0b278894aaa66d996792a4d7b7

Score

10^/10

mrblack linux suricata

Static task

static1

Behavioral task

behavioral1

Sample

da2a3acb7a40ceca3d89f84583703ddc1003a5448e9b1dcda7dea986a4d84f82

Resource

ubuntu1804-amd64-en-20211208

linux_amd64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  da2a3acb7a40ceca3d89f84583703ddc1003a5448e9b1dcda7dea986a4d84f82
- Size
  
  1.2MB
- MD5
  
  6205df8b077b2ca968077127dd03ab84
- SHA1
  
  4db1c73a4a33696da9208cc220f8262fb90767af
- SHA256
  
  da2a3acb7a40ceca3d89f84583703ddc1003a5448e9b1dcda7dea986a4d84f82
- SHA512
  
  9b0ec70890246e2cde9d2df1faabac9fabfd9fe80a7649200f4ae9b81dcbe9cd7c0788fac19ebd5e05be1475a62ffa3b0df0fc0b278894aaa66d996792a4d7b7
Score

10^/10

suricata
- suricata: ET MALWARE Linux/BillGates Checkin Response
  suricata: ET MALWARE Linux/BillGates Checkin Response
  suricata
- Writes file to system bin folder
- Write file to user bin folder
- Reads runtime system information
  Reads data from /proc virtual filesystem.
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hijack Execution Flow

Privilege Escalation

Hijack Execution Flow

Defense Evasion

Hijack Execution Flow

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy