3da90e1f2f599849c01dd5e873c0fe902579666556069140e8e89b7476f6fc6a | Triage

Sharing

General

Target

sigthief.py
Size

10KB
Sample

221128-cj4llafg38
MD5

3ab332036d3d137c16e7a6307243ba2e
SHA1

16e945f448e877aff61e488d2f5f6fd1ea111ef2
SHA256

3da90e1f2f599849c01dd5e873c0fe902579666556069140e8e89b7476f6fc6a
SHA512

fb596987e3606533b2961550a94e8252da4db36093effaa554d8f1e7e4047fb915204143b16c0a0922295d1badd047fdf0b629f3cd61b56b93b55c83e635b483
SSDEEP

192:Juj5U9+6E0yWYSF/DwI6CRgRIah/gSEU15AkAJi:JvyMvRHU1D

Score

7^/10

linux

Malware Config

Targets

- Target
  
  sigthief.py
- Size
  
  10KB
- MD5
  
  3ab332036d3d137c16e7a6307243ba2e
- SHA1
  
  16e945f448e877aff61e488d2f5f6fd1ea111ef2
- SHA256
  
  3da90e1f2f599849c01dd5e873c0fe902579666556069140e8e89b7476f6fc6a
- SHA512
  
  fb596987e3606533b2961550a94e8252da4db36093effaa554d8f1e7e4047fb915204143b16c0a0922295d1badd047fdf0b629f3cd61b56b93b55c83e635b483
- SSDEEP
  
  192:Juj5U9+6E0yWYSF/DwI6CRgRIah/gSEU15AkAJi:JvyMvRHU1D
Score

7^/10
- Write file to user bin folder
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral1 behavioral2 behavioral3 behavioral4

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hijack Execution Flow

Privilege Escalation

Hijack Execution Flow

Defense Evasion

Hijack Execution Flow

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4