mrblack | 3a987e4972535a9e992253dce168e0499d8b6dfc6e4e19cc8be6153397668967 | Triage

Sharing

General

Target

syn.elf
Size

1.2MB
Sample

221022-s64g4sebbr
MD5

f036d89ced730ec7397027bc28fda203
SHA1

596cee682146d5ae8c1807bcba9c7872823e3cd4
SHA256

3a987e4972535a9e992253dce168e0499d8b6dfc6e4e19cc8be6153397668967
SHA512

66d9b293c8a94877d34f978461203f7389acdf6ba37da91951579cb8eea47d0c042587b3071184a3d58c1a939b0ebdefbef2699c235f1a3ab227c6b787b86c4a
SSDEEP

24576:e845rUHu6gVJKG75oFpA0VWTX4G2y1q2rJp0:7451RVJKGtSA0VWToVu9p0

Score

10^/10

mrblack linux

Malware Config

Targets

- Target
  
  syn.elf
- Size
  
  1.2MB
- MD5
  
  f036d89ced730ec7397027bc28fda203
- SHA1
  
  596cee682146d5ae8c1807bcba9c7872823e3cd4
- SHA256
  
  3a987e4972535a9e992253dce168e0499d8b6dfc6e4e19cc8be6153397668967
- SHA512
  
  66d9b293c8a94877d34f978461203f7389acdf6ba37da91951579cb8eea47d0c042587b3071184a3d58c1a939b0ebdefbef2699c235f1a3ab227c6b787b86c4a
- SSDEEP
  
  24576:e845rUHu6gVJKG75oFpA0VWTX4G2y1q2rJp0:7451RVJKGtSA0VWToVu9p0
Score

9^/10
- Writes file to system bin folder
- Write file to user bin folder
- Reads runtime system information
  Reads data from /proc virtual filesystem.
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hijack Execution Flow

Privilege Escalation

Hijack Execution Flow

Defense Evasion

Hijack Execution Flow

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1