Overview

overview

10

Static

static

10

a130125a49...899509

linux_amd64

10

Analysis

  • max time kernel
    0s
  • max time network
    103s
  • platform
    linux_amd64
  • resource
    ubuntu1804-amd64-en-20211208
  • submitted
    17-06-2022 07:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a130125a498a358b75cd9a1256ea873baeacd81f77c3d2ea475f3e547f899509

  • Size

    4.0MB

  • MD5

    fad30251f203f5cc39ef2b67ccb7ca4b

  • SHA1

    89de4dd78decbee9272f8115d67379892ccdf3ae

  • SHA256

    a130125a498a358b75cd9a1256ea873baeacd81f77c3d2ea475f3e547f899509

  • SHA512

    598fcd183d1ea913feb611335aa7e23e1df98640a41036b9b7ca803bd6f864a5379ec73f99559fe1127215274da2bec22a554a0ca2199ccb8e142d88fa3fb7f8

Score
10/10
persistencesuricata

Malware Config

Signatures

  • suricata: ET MALWARE ZHtrap CnC Checkin

    suricata: ET MALWARE ZHtrap CnC Checkin

    suricata
  • suricata: ET MALWARE ZHtrap CnC Response - Connection Successfully Established

    suricata: ET MALWARE ZHtrap CnC Response - Connection Successfully Established

    suricata
  • Modifies init.d 1 TTPs 1 IoCs

    Adds/modifies system service, likely for persistence.

    persistence
  • Write file to user bin folder 1 TTPs 1 IoCs

Processes

  • ./a130125a498a358b75cd9a1256ea873baeacd81f77c3d2ea475f3e547f899509
    ./a130125a498a358b75cd9a1256ea873baeacd81f77c3d2ea475f3e547f899509
    1⤵
    • Modifies init.d
    • Write file to user bin folder
    PID:571

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads