General
Target

apa.jpg

Size

53KB

Sample

220331-pea5psbff2

Score
10/10
MD5

10ac30ebbed68584400f8ccd814e2a60

SHA1

fc3539a0c7b4f5bcbe22373fe0e81fb613afd270

SHA256

6574b93062974e287a65798dca6f6efd2bc8f8e376baa6efa69ddfc719acf8d9

SHA512

a51563bd3f6639b927d8c3ff53e24551d6a9936b8185305840c8e8cbc05ac3e8a465a7d3a09f915af7b81afec4092c7c4b170589d3b5f954e8ec65e4d11dea18

Malware Config
Targets
Target

apa.jpg

MD5

10ac30ebbed68584400f8ccd814e2a60

Filesize

53KB

Score
8/10
SHA1

fc3539a0c7b4f5bcbe22373fe0e81fb613afd270

SHA256

6574b93062974e287a65798dca6f6efd2bc8f8e376baa6efa69ddfc719acf8d9

SHA512

a51563bd3f6639b927d8c3ff53e24551d6a9936b8185305840c8e8cbc05ac3e8a465a7d3a09f915af7b81afec4092c7c4b170589d3b5f954e8ec65e4d11dea18

Tags

Signatures

  • Modifies hosts file

    Description

    Adds to hosts file used for mapping hosts to IP addresses.

  • Writes DNS configuration

    Description

    Writes data to DNS resolver config file.

    TTPs

  • Modifies rc script

    Description

    Adding/modifying system rc scripts is a common persistence mechanism.

    Tags

    TTPs

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          Score
                          10/10

                          behavioral1

                          Score
                          8/10