mrblack | 3af00ccefc81f874be86a1c3a6184b52a75d0cf4f91ab5343d3f9176cfcbd860 | Triage

Submit
Reports

Overview

overview

Static

static

3af00ccefc...cbd860

linux_amd64

9

Sharing

General

Target

3af00ccefc81f874be86a1c3a6184b52a75d0cf4f91ab5343d3f9176cfcbd860
Size

1.2MB
Sample

220703-wzcmladha6
MD5

21db4ff2a01d4d4d4246aea05b5a9c02
SHA1

6e6e730abf88ef15824e9d00fcb75956943a02d8
SHA256

3af00ccefc81f874be86a1c3a6184b52a75d0cf4f91ab5343d3f9176cfcbd860
SHA512

2e23d1cdbd819f47726a12a7a90b76c430bbc3013cd2ea190d62235bca7453ef3b57db062c516c382d17dd1065a9535a9e222764a0a04596ca9f7bbbefe8a36f

Score

10^/10

mrblack linux

Static task

static1

Behavioral task

behavioral1

Sample

3af00ccefc81f874be86a1c3a6184b52a75d0cf4f91ab5343d3f9176cfcbd860

Resource

ubuntu1804-amd64-en-20211208

linux_amd64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  3af00ccefc81f874be86a1c3a6184b52a75d0cf4f91ab5343d3f9176cfcbd860
- Size
  
  1.2MB
- MD5
  
  21db4ff2a01d4d4d4246aea05b5a9c02
- SHA1
  
  6e6e730abf88ef15824e9d00fcb75956943a02d8
- SHA256
  
  3af00ccefc81f874be86a1c3a6184b52a75d0cf4f91ab5343d3f9176cfcbd860
- SHA512
  
  2e23d1cdbd819f47726a12a7a90b76c430bbc3013cd2ea190d62235bca7453ef3b57db062c516c382d17dd1065a9535a9e222764a0a04596ca9f7bbbefe8a36f
Score

9^/10
- Writes file to system bin folder
- Write file to user bin folder
- Reads runtime system information
  Reads data from /proc virtual filesystem.
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hijack Execution Flow

Privilege Escalation

Hijack Execution Flow

Defense Evasion

Hijack Execution Flow

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy