Overview

overview

10

Static

static

10

17dfb93021...503d2a

linux_armhf

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    17dfb9302174dd618d73e2d837af01fdd89cfbbb456ee8dda125b3a120503d2a

  • Size

    121KB

  • Sample

    220630-3fpldadhg5

  • MD5

    421147cab37de5b24fddb9b285d3ac10

  • SHA1

    f0c36ff9d26f80c708e98cbbb8689fd46cd64085

  • SHA256

    17dfb9302174dd618d73e2d837af01fdd89cfbbb456ee8dda125b3a120503d2a

  • SHA512

    62b6a6a487ffac78dd3a8e413e33311bb39fb0c52330fd6ef2255e7a9862b5eb3b731326ac54740983a252e198e2198b0fae7be2d395a64c8a789dce50d7618c

Score
10/10
kaitenlinuxpersistence

Malware Config

Targets

    • Target

      17dfb9302174dd618d73e2d837af01fdd89cfbbb456ee8dda125b3a120503d2a

    • Size

      121KB

    • MD5

      421147cab37de5b24fddb9b285d3ac10

    • SHA1

      f0c36ff9d26f80c708e98cbbb8689fd46cd64085

    • SHA256

      17dfb9302174dd618d73e2d837af01fdd89cfbbb456ee8dda125b3a120503d2a

    • SHA512

      62b6a6a487ffac78dd3a8e413e33311bb39fb0c52330fd6ef2255e7a9862b5eb3b731326ac54740983a252e198e2198b0fae7be2d395a64c8a789dce50d7618c

    Score
    7/10
    persistence

    • Modifies rc script

      Adding/modifying system rc scripts is a common persistence mechanism.

      persistence

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

    • Reads system network configuration

      Uses contents of /proc filesystem to enumerate network settings.

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks