48059f158803eb40b15b155cdf06c357fc98bf1b5455e32f43b556d35663aca7 | Triage

Sharing

General

Target

48059f158803eb40b15b155cdf06c357fc98bf1b5455e32f43b556d35663aca7
Size

159KB
Sample

220714-e679eadgaj
MD5

e092fcffd8d768ba9a5a1973c9ae3946
SHA1

b863854859a1e0cd2842606e8bdba4e3792f1d5d
SHA256

48059f158803eb40b15b155cdf06c357fc98bf1b5455e32f43b556d35663aca7
SHA512

28bc76de8e947d467fc41d561c0fcd86e5054067f2072fd6e157032d3caff1076a7e4f6a4e7bbd4a89d949416332561303dc922d2a09b71072e567503e2166cc

Score

7^/10

linux

Malware Config

Targets

- Target
  
  48059f158803eb40b15b155cdf06c357fc98bf1b5455e32f43b556d35663aca7
- Size
  
  159KB
- MD5
  
  e092fcffd8d768ba9a5a1973c9ae3946
- SHA1
  
  b863854859a1e0cd2842606e8bdba4e3792f1d5d
- SHA256
  
  48059f158803eb40b15b155cdf06c357fc98bf1b5455e32f43b556d35663aca7
- SHA512
  
  28bc76de8e947d467fc41d561c0fcd86e5054067f2072fd6e157032d3caff1076a7e4f6a4e7bbd4a89d949416332561303dc922d2a09b71072e567503e2166cc
Score

7^/10
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
- Reads system network configuration
  Uses contents of /proc filesystem to enumerate network settings.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1