5465639ba971b150a445a1d2879df41d6bfb8d043134964847c62ef8d56c0e2a | Triage

Analysis

max time kernel
0s
max time network
120s
platform
linux_mipsel
resource
debian9-mipsel-en-20211208
resource tags

arch:mipselimage:debian9-mipsel-en-20211208kernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
submitted
25-07-2022 19:26

Sharing

Report Analysis Logs

General

Target

5465639ba971b150a445a1d2879df41d6bfb8d043134964847c62ef8d56c0e2a
Size

128KB
MD5

936dab4573c1003656551a9b4e0c6ba4
SHA1

7ad92f77779997915315f6ad750c844681804a4b
SHA256

5465639ba971b150a445a1d2879df41d6bfb8d043134964847c62ef8d56c0e2a
SHA512

90d60e3df83ff575ef0c2c0b50be0cc4f7bc2f1b7a6e6dd8bde6050f1715a67cc35af47ef8a77b93ddf6f77596dc5056df975db6f5dfe4dcb3c4cf9a96395944

Score

8^/10

Malware Config

Signatures

Modifies hosts file 1 IoCs
Adds to hosts file used for mapping hosts to IP addresses.

Processes:

description ioc

/etc/hosts /etc/hosts
Writes DNS configuration 1 TTPs 1 IoCs
Writes data to DNS resolver config file.

Dynamic Resolution
T1568

Processes:

description ioc

/etc/resolv.conf /etc/resolv.conf

/tmp/5465639ba971b150a445a1d2879df41d6bfb8d043134964847c62ef8d56c0e2a
/tmp/5465639ba971b150a445a1d2879df41d6bfb8d043134964847c62ef8d56c0e2a
1⤵
PID:327

Network

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Dynamic Resolution

Impact

Replay Monitor

Loading Replay Monitor...