Overview

overview

10

Static

static

10

FBI.x86_64

ubuntu-18.04-amd64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    FBI.x86_64

  • Size

    97KB

  • Sample

    220822-1eyfsadeal

  • MD5

    64306d2e104cf229036a5e67cc5a8151

  • SHA1

    d0b5334beff7486e3cff413a142248998096abb5

  • SHA256

    d19430f718c0b2391bb220fabb0c72e51762abb5e526836325f8e7f6bc72ebcb

  • SHA512

    369bb4c2e004fd23e9c3b7bb2bb4aec341f89d33ec93e974d4376638703a7b2d6ab16a99db7c43bf593bf8fd791eed0b5fae789b6f181952e201676edbf41623

  • SSDEEP

    3072:l+VRiy47uemqXK0+02UkZYw0SRf9xJ3k6tZHV:l+Vg7uePaa2UkZDNHJ3k6HV

Score
10/10
miraidiscoverylinux

Malware Config

Targets

    • Target

      FBI.x86_64

    • Size

      97KB

    • MD5

      64306d2e104cf229036a5e67cc5a8151

    • SHA1

      d0b5334beff7486e3cff413a142248998096abb5

    • SHA256

      d19430f718c0b2391bb220fabb0c72e51762abb5e526836325f8e7f6bc72ebcb

    • SHA512

      369bb4c2e004fd23e9c3b7bb2bb4aec341f89d33ec93e974d4376638703a7b2d6ab16a99db7c43bf593bf8fd791eed0b5fae789b6f181952e201676edbf41623

    • SSDEEP

      3072:l+VRiy47uemqXK0+02UkZYw0SRf9xJ3k6tZHV:l+Vg7uePaa2UkZDNHJ3k6HV

    Score
    8/10
    discovery

    • Writes DNS configuration

      Writes data to DNS resolver config file.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery
    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

1
T1046

Lateral Movement

Collection

Exfiltration

Command and Control

Dynamic Resolution

1
T1568

Impact

Tasks