Overview

overview

10

Static

static

10

5878ec5f17...7c65e7

linux_mips

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5878ec5f175fef0364727673993af5db4ac6ad577f053cf6294caba91c7c65e7

  • Size

    149KB

  • Sample

    220624-2bzp4sfcfr

  • MD5

    5d6b341d03fd3dec4d2ee9282dbe78f2

  • SHA1

    bed032acebdf5cf9388594e8d84f93e91186dd59

  • SHA256

    5878ec5f175fef0364727673993af5db4ac6ad577f053cf6294caba91c7c65e7

  • SHA512

    c5845ce2ab8dffbafe308c6228566d508c53b5990968110d43ac31841a6b0642df2c326a53cf21f50ecbd52ed105495a6bb12890b12a49ffccc9a7c4770d2605

Score
10/10
kaitenlinuxpersistence

Malware Config

Targets

    • Target

      5878ec5f175fef0364727673993af5db4ac6ad577f053cf6294caba91c7c65e7

    • Size

      149KB

    • MD5

      5d6b341d03fd3dec4d2ee9282dbe78f2

    • SHA1

      bed032acebdf5cf9388594e8d84f93e91186dd59

    • SHA256

      5878ec5f175fef0364727673993af5db4ac6ad577f053cf6294caba91c7c65e7

    • SHA512

      c5845ce2ab8dffbafe308c6228566d508c53b5990968110d43ac31841a6b0642df2c326a53cf21f50ecbd52ed105495a6bb12890b12a49ffccc9a7c4770d2605

    Score
    7/10
    persistence

    • Modifies rc script

      Adding/modifying system rc scripts is a common persistence mechanism.

      persistence

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

    • Reads system network configuration

      Uses contents of /proc filesystem to enumerate network settings.

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks