6e0e90c688b966c65eb4d1acb132490557a7c387e1d8bb0ddfb5f478ac47fe70 | Triage

Sharing

General

Target

6e0e90c688b966c65eb4d1acb132490557a7c387e1d8bb0ddfb5f478ac47fe70
Size

3.3MB
Sample

220708-rtjfqsdghj
MD5

81984c0fb19c725e619ae3f56664e77f
SHA1

2086ab4c6ed6fd4ecb2705949aa7f8d33a7c9fd9
SHA256

6e0e90c688b966c65eb4d1acb132490557a7c387e1d8bb0ddfb5f478ac47fe70
SHA512

adcbcb90325813cdee78c76830ffd8056b07125c232af9c4f30f2f920f514805f65e49283cb74e107b98b1d4dd7e44056a1d7e01b4472edca4ea2033ab5a94dd

Score

9^/10

backdoor linux

Malware Config

Targets

- Target
  
  6e0e90c688b966c65eb4d1acb132490557a7c387e1d8bb0ddfb5f478ac47fe70
- Size
  
  3.3MB
- MD5
  
  81984c0fb19c725e619ae3f56664e77f
- SHA1
  
  2086ab4c6ed6fd4ecb2705949aa7f8d33a7c9fd9
- SHA256
  
  6e0e90c688b966c65eb4d1acb132490557a7c387e1d8bb0ddfb5f478ac47fe70
- SHA512
  
  adcbcb90325813cdee78c76830ffd8056b07125c232af9c4f30f2f920f514805f65e49283cb74e107b98b1d4dd7e44056a1d7e01b4472edca4ea2033ab5a94dd
Score

9^/10

backdoor
- Writes file to system bin folder
- Reads CPU attributes
- Reads network interface configuration
  Fetches information about one or more active network interfaces.
  backdoor
- Enumerates kernel/hardware configuration
  Reads contents of /sys virtual filesystem to enumerate system information.
- Reads runtime system information
  Reads data from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hijack Execution Flow

Privilege Escalation

Hijack Execution Flow

Defense Evasion

Hijack Execution Flow

Credential Access

Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1