Overview

overview

10

Static

static

10

40156e5be4...534be2

linux_armhf

8

Analysis

  • max time kernel
    18349s
  • max time network
    156s
  • platform
    linux_armhf
  • resource
    debian9-armhf-en-20211208
  • submitted
    08-07-2022 21:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    40156e5be44396e2b859f4349f72a8366901396a8f880b68026f74435f534be2

  • Size

    778KB

  • MD5

    993081f9490972e9d242f15b22515889

  • SHA1

    bb962fc05930b9189fe8c20380a356cad75612b7

  • SHA256

    40156e5be44396e2b859f4349f72a8366901396a8f880b68026f74435f534be2

  • SHA512

    1a6acc3e618eae7d0df8b02ac9c51768a6181a28cf4de0be29e028185eb43a06f960524b39e0a1ee155009fe478e0b6f5196bd900cd1f122bac74b6b43466e78

Score
8/10

Malware Config

Signatures

  • Writes DNS configuration 1 TTPs 1 IoCs

    Writes data to DNS resolver config file.

Processes

  • ./40156e5be44396e2b859f4349f72a8366901396a8f880b68026f74435f534be2
    ./40156e5be44396e2b859f4349f72a8366901396a8f880b68026f74435f534be2
    1⤵
      PID:351

    Network

    MITRE ATT&CK Matrix ATT&CK v6

    Initial Access

    Execution

    Persistence

    Privilege Escalation

    Defense Evasion

    Credential Access

    Discovery

    Lateral Movement

    Collection

    Exfiltration

    Command and Control

    Dynamic Resolution

    1
    T1568

    Impact

    Replay Monitor

    Loading Replay Monitor...

    Downloads