General

  • Size

    8MB

  • Sample

    220728-t14flahhgl

  • MD5

    b6979cbbb6d8db0b796ccfa8a6c62db8

  • SHA1

    925874842156f42f76ec4efa63b26380856680a3

  • SHA256

    8411b821db59fa7306c75cb20cc3e3d51bc58c7d0ab3227ef3250a8abc06260b

  • SHA512

    e8d04da7c3585dc390eb3b5a734d83ebf35d2e9d8529edaedb8829277efa70d57087af64d6bdadb9b29f9a995defd693efa6b3a71e924d98100da7f8518e92c6

Score
10/10

Malware Config

Targets

    • Target

      merlinAgent-custom-Linux-x64

    • Size

      8MB

    • MD5

      b6979cbbb6d8db0b796ccfa8a6c62db8

    • SHA1

      925874842156f42f76ec4efa63b26380856680a3

    • SHA256

      8411b821db59fa7306c75cb20cc3e3d51bc58c7d0ab3227ef3250a8abc06260b

    • SHA512

      e8d04da7c3585dc390eb3b5a734d83ebf35d2e9d8529edaedb8829277efa70d57087af64d6bdadb9b29f9a995defd693efa6b3a71e924d98100da7f8518e92c6

    Score
    5/10
    • Enumerates kernel/hardware configuration

      Reads contents of /sys virtual filesystem to enumerate system information.

MITRE ATT&CK Matrix

Collection

    Command and Control

      Credential Access

        Defense Evasion

          Execution

            Exfiltration

              Impact

                Initial Access

                  Lateral Movement

                    Persistence

                      Privilege Escalation