8b8129509ce25b214e8ed6ce4bf53584f469a023aa2bbc6499975e934b4d57ee | Triage

Sharing

General

Target

9c288d048db6ffd62105350d071bd542
Size

22KB
Sample

220820-fjjg7shfb9
MD5

9c288d048db6ffd62105350d071bd542
SHA1

edc5c33c1c1f5078cdd71acefc9a84207e7ffa7d
SHA256

8b8129509ce25b214e8ed6ce4bf53584f469a023aa2bbc6499975e934b4d57ee
SHA512

11436d7a1aa1c089513a814c849f169e0ee1618cca37736d59c15ea6c7b491e2ff6f42a273c32a66b8b0f91eb09809b06f93b177e7c05322038df2dded66c86d
SSDEEP

384:UDYC95A2rM7RjFrvX2V6H2XJ8LaHYsbX1chiM4HhBJhpExUC03uhHB3QJmRxv/9q:UDZ5Dw7RjFjcU+O24sDS4HhrhpEguX34

Score

9^/10

linux

Malware Config

Targets

- Target
  
  9c288d048db6ffd62105350d071bd542
- Size
  
  22KB
- MD5
  
  9c288d048db6ffd62105350d071bd542
- SHA1
  
  edc5c33c1c1f5078cdd71acefc9a84207e7ffa7d
- SHA256
  
  8b8129509ce25b214e8ed6ce4bf53584f469a023aa2bbc6499975e934b4d57ee
- SHA512
  
  11436d7a1aa1c089513a814c849f169e0ee1618cca37736d59c15ea6c7b491e2ff6f42a273c32a66b8b0f91eb09809b06f93b177e7c05322038df2dded66c86d
- SSDEEP
  
  384:UDYC95A2rM7RjFrvX2V6H2XJ8LaHYsbX1chiM4HhBJhpExUC03uhHB3QJmRxv/9q:UDZ5Dw7RjFjcU+O24sDS4HhrhpEguX34
Score

9^/10
- Modifies the Watchdog daemon
  Malware like Mirai modify the Watchdog to prevent it restarting an infected system.
- Writes file to system bin folder
- Reads runtime system information
  Reads data from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hijack Execution Flow

Privilege Escalation

Hijack Execution Flow

Defense Evasion

Impair Defenses

Hijack Execution Flow

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1