General
-
Target
54019336e6fbb7b9e621821f9b9f0a5c.elf
-
Size
4.6MB
-
Sample
220908-fv871aaggq
-
MD5
54019336e6fbb7b9e621821f9b9f0a5c
-
SHA1
bd4a00b9194db65d78053ede828ec3107ba982cd
-
SHA256
a51ac88920838035e758b9c20912867c51f78e76bc27fb6bf57128eb7ada54f8
-
SHA512
08e1dd28765b65033637c97afc2d517f8179ac800b67b4897c97a8af86186f24a43cc11b028b202a3cb46389ad51c4779b5d722e63e27b124bf53dd37d30f361
-
SSDEEP
49152:Gj9jMidSyBRoVTc8jLq3eKDrg/czUJlCCLrR1KuAb7/C:MjFdSERWTc8q3eR6/C
Malware Config
Targets
-
-
Target
54019336e6fbb7b9e621821f9b9f0a5c.elf
-
Size
4.6MB
-
MD5
54019336e6fbb7b9e621821f9b9f0a5c
-
SHA1
bd4a00b9194db65d78053ede828ec3107ba982cd
-
SHA256
a51ac88920838035e758b9c20912867c51f78e76bc27fb6bf57128eb7ada54f8
-
SHA512
08e1dd28765b65033637c97afc2d517f8179ac800b67b4897c97a8af86186f24a43cc11b028b202a3cb46389ad51c4779b5d722e63e27b124bf53dd37d30f361
-
SSDEEP
49152:Gj9jMidSyBRoVTc8jLq3eKDrg/czUJlCCLrR1KuAb7/C:MjFdSERWTc8q3eR6/C
Score7/10-
Modifies init.d
Adds/modifies system service, likely for persistence.
-
Write file to user bin folder
-
Enumerates kernel/hardware configuration
Reads contents of /sys virtual filesystem to enumerate system information.
-
Writes file to tmp directory
Malware often drops required files in the /tmp directory.
-