fa5eb81125c91825d50a6be567bdadf41c1af5cb514f44480268dee3a0240828 | Triage

Sharing

General

Target

c3e0ac6dff87420fed2e4f7b8b480b50
Size

66KB
Sample

220812-h13nhscga7
MD5

c3e0ac6dff87420fed2e4f7b8b480b50
SHA1

8ee3e579971790541f4c1cda6912b6e73b7a7415
SHA256

fa5eb81125c91825d50a6be567bdadf41c1af5cb514f44480268dee3a0240828
SHA512

25a8e60ed3936f0c0990df05ae0d7f6d2c6bba60b64877469cd4b29f3bccb3045cf3eff679604bf65df63ec9951d9a08340aa4e2eb32537987861b8f8eac804d

Score

7^/10

linux

Malware Config

Targets

- Target
  
  c3e0ac6dff87420fed2e4f7b8b480b50
- Size
  
  66KB
- MD5
  
  c3e0ac6dff87420fed2e4f7b8b480b50
- SHA1
  
  8ee3e579971790541f4c1cda6912b6e73b7a7415
- SHA256
  
  fa5eb81125c91825d50a6be567bdadf41c1af5cb514f44480268dee3a0240828
- SHA512
  
  25a8e60ed3936f0c0990df05ae0d7f6d2c6bba60b64877469cd4b29f3bccb3045cf3eff679604bf65df63ec9951d9a08340aa4e2eb32537987861b8f8eac804d
Score

7^/10
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
- Reads system network configuration
  Uses contents of /proc filesystem to enumerate network settings.
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1