Analysis
-
max time kernel
19841s -
max time network
153s -
platform
linux_mips -
resource
debian9-mipsbe-en-20211208 -
resource tags
-
submitted
25-07-2022 19:10
General
-
Target
547b175b0ba72c54eafba7f3adefe57be23ccf272ba31aa66eebc73f9d0d1641
-
Size
131KB
-
MD5
943f96d086f940f3c0b91ceb79a920f8
-
SHA1
1a8e43d4dde5745a258d4272c26a380520ef7a84
-
SHA256
547b175b0ba72c54eafba7f3adefe57be23ccf272ba31aa66eebc73f9d0d1641
-
SHA512
f81038d87271178fdaee42380be45b88a7f7effeeaaca8e12f6b505c0c15c4c27c851925f044d763d54f65ae9eed9d33147fbb6f3c3f4b00c4e81a3fa91809a7
Score
8/10
Malware Config
Signatures
-
Modifies hosts file 1 IoCs
Adds to hosts file used for mapping hosts to IP addresses.
-
Writes DNS configuration 1 TTPs 1 IoCs
Writes data to DNS resolver config file.
-
Modifies rc script 1 TTPs 1 IoCs
Adding/modifying system rc scripts is a common persistence mechanism.
Processes
-
/tmp/547b175b0ba72c54eafba7f3adefe57be23ccf272ba31aa66eebc73f9d0d1641/tmp/547b175b0ba72c54eafba7f3adefe57be23ccf272ba31aa66eebc73f9d0d16411⤵
- Modifies rc script