mrblack | ee388191ed2e6ba5b615cbf09bca64a6d13fe27cfa930f4acc611f47ff1d42b8 | Triage

Sharing

General

Target

getty
Size

1.2MB
Sample

221107-e28z5sgeh4
MD5

ca012f5b33984004af31a2acebdc389a
SHA1

cabbbffa03231efd135e1fe29c8aab7a27bf2a73
SHA256

ee388191ed2e6ba5b615cbf09bca64a6d13fe27cfa930f4acc611f47ff1d42b8
SHA512

c2789cfe33601269ee185adab556a602a99438c3010f7ad716b4469861cf15de6fc805b024c5bd6f4064be8fff84d58adf5fff1681502cda140c24f9c38e1e57
SSDEEP

24576:e845rGHu6gVJKG75oFpA0VWeX4K2y1q2rJp0:745vRVJKGtSA0VWeopu9p0

Score

10^/10

mrblack linux

Malware Config

Targets

- Target
  
  getty
- Size
  
  1.2MB
- MD5
  
  ca012f5b33984004af31a2acebdc389a
- SHA1
  
  cabbbffa03231efd135e1fe29c8aab7a27bf2a73
- SHA256
  
  ee388191ed2e6ba5b615cbf09bca64a6d13fe27cfa930f4acc611f47ff1d42b8
- SHA512
  
  c2789cfe33601269ee185adab556a602a99438c3010f7ad716b4469861cf15de6fc805b024c5bd6f4064be8fff84d58adf5fff1681502cda140c24f9c38e1e57
- SSDEEP
  
  24576:e845rGHu6gVJKG75oFpA0VWeX4K2y1q2rJp0:745vRVJKGtSA0VWeopu9p0
Score

9^/10
- Writes file to system bin folder
- Write file to user bin folder
- Reads runtime system information
  Reads data from /proc virtual filesystem.
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hijack Execution Flow

Privilege Escalation

Hijack Execution Flow

Defense Evasion

Hijack Execution Flow

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1