Overview

overview

10

Static

static

10

b9101f8c86...7a1d78

linux_mips

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b9101f8c865361bac3e59a59dd07954f76bdc31e4fd0357adcfdb4edd07a1d78

  • Size

    239KB

  • Sample

    220625-ec6hqadack

  • MD5

    b71190adfc0f76ab3077846e43abfb9b

  • SHA1

    4e182f4005dec6165f9b67798259a921f2f61777

  • SHA256

    b9101f8c865361bac3e59a59dd07954f76bdc31e4fd0357adcfdb4edd07a1d78

  • SHA512

    4b7d967ef6bd718f26d2827799e7f461af9c34651b5a3d0d6f788db165926650143e6ded4eb34c141c90d5d48219bf8f4fd5beef036f1ffd9def4123cf90ea95

Score
10/10
kaitenlinuxpersistence

Malware Config

Targets

    • Target

      b9101f8c865361bac3e59a59dd07954f76bdc31e4fd0357adcfdb4edd07a1d78

    • Size

      239KB

    • MD5

      b71190adfc0f76ab3077846e43abfb9b

    • SHA1

      4e182f4005dec6165f9b67798259a921f2f61777

    • SHA256

      b9101f8c865361bac3e59a59dd07954f76bdc31e4fd0357adcfdb4edd07a1d78

    • SHA512

      4b7d967ef6bd718f26d2827799e7f461af9c34651b5a3d0d6f788db165926650143e6ded4eb34c141c90d5d48219bf8f4fd5beef036f1ffd9def4123cf90ea95

    Score
    7/10
    persistence

    • Modifies rc script

      Adding/modifying system rc scripts is a common persistence mechanism.

      persistence

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

    • Reads system network configuration

      Uses contents of /proc filesystem to enumerate network settings.

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks