565f9c5b2eae17f3756fdd4b08af045ecdb3e3e94ef4a5fea65c37a32bad6403 | Triage

Submit
Reports

Overview

overview

Static

static

565f9c5b2e...ad6403

ubuntu-18.04-amd64

Sharing

General

Target

565f9c5b2eae17f3756fdd4b08af045ecdb3e3e94ef4a5fea65c37a32bad6403
Size

1.8MB
Sample

220725-dc1f2abhgm
MD5

82e05552f42b1d12cd7775b4c17b0954
SHA1

ebbe29a066fbb6de459980f3c95490b77439858c
SHA256

565f9c5b2eae17f3756fdd4b08af045ecdb3e3e94ef4a5fea65c37a32bad6403
SHA512

48cc42f1e5149983de0d1ca2c5918674f451777c8ac96a698fdee40fd00c2f59123003c302ff5a61f02ea7252d280e0cbdf332e40cf8f68651e53a1f1dc0fd60

Score

10^/10

persistence suricata

Static task

static1

Behavioral task

behavioral1

Sample

565f9c5b2eae17f3756fdd4b08af045ecdb3e3e94ef4a5fea65c37a32bad6403

Resource

ubuntu1804-amd64-en-20211208

persistence suricata

ubuntu-18.04-amd64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  565f9c5b2eae17f3756fdd4b08af045ecdb3e3e94ef4a5fea65c37a32bad6403
- Size
  
  1.8MB
- MD5
  
  82e05552f42b1d12cd7775b4c17b0954
- SHA1
  
  ebbe29a066fbb6de459980f3c95490b77439858c
- SHA256
  
  565f9c5b2eae17f3756fdd4b08af045ecdb3e3e94ef4a5fea65c37a32bad6403
- SHA512
  
  48cc42f1e5149983de0d1ca2c5918674f451777c8ac96a698fdee40fd00c2f59123003c302ff5a61f02ea7252d280e0cbdf332e40cf8f68651e53a1f1dc0fd60
Score

10^/10

persistence suricata
- suricata: ET MALWARE Linux.DDoS Checkin
  suricata: ET MALWARE Linux.DDoS Checkin
  suricata
- suricata: ET MALWARE Linux/AES.DDoS Sending Real/Fake CPU&BW Info
  suricata: ET MALWARE Linux/AES.DDoS Sending Real/Fake CPU&BW Info
  suricata
- Modifies init.d
  Adds/modifies system service, likely for persistence.
  persistence
- Modifies rc script
  Adding/modifying system rc scripts is a common persistence mechanism.
  persistence
- Reads runtime system information
  Reads data from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Privilege Escalation

Boot or Logon Autostart Execution

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

persistencesuricata

© 2018-2024

Terms | Privacy