e67719fec199a4bd74c3e5946016c2561e6d299ce62eb648a60c0f433a61df7b | Triage

Sharing

General

Target

boatnet.x86_64
Size

22KB
Sample

220806-g67c8abedp
MD5

571b51f69986c6be58c2ba651b02222a
SHA1

4ec598fcb3e50c6b35518dcd41128349929f5923
SHA256

e67719fec199a4bd74c3e5946016c2561e6d299ce62eb648a60c0f433a61df7b
SHA512

feeab7d3971d9e129870d940446c6bafed63aa791aa9fc068641781be5e001414aa3bf7c939466c122634d857b75c8b2423c28bc0e471db0efc8c87a9dd4f169

Score

9^/10

linux

Malware Config

Targets

- Target
  
  boatnet.x86_64
- Size
  
  22KB
- MD5
  
  571b51f69986c6be58c2ba651b02222a
- SHA1
  
  4ec598fcb3e50c6b35518dcd41128349929f5923
- SHA256
  
  e67719fec199a4bd74c3e5946016c2561e6d299ce62eb648a60c0f433a61df7b
- SHA512
  
  feeab7d3971d9e129870d940446c6bafed63aa791aa9fc068641781be5e001414aa3bf7c939466c122634d857b75c8b2423c28bc0e471db0efc8c87a9dd4f169
Score

9^/10
- Modifies the Watchdog daemon
  Malware like Mirai modify the Watchdog to prevent it restarting an infected system.
- Writes file to system bin folder
- Reads runtime system information
  Reads data from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hijack Execution Flow

Privilege Escalation

Hijack Execution Flow

Defense Evasion

Impair Defenses

Hijack Execution Flow

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1