mrblack | b034b26b1d08f1d86ecffff6cde9568708af7bf86e743292f6b74c83dc25d1ae | Triage

Sharing

General

Target

b034b26b1d08f1d86ecffff6cde9568708af7bf86e743292f6b74c83dc25d1ae
Size

1.2MB
Sample

221128-mxevhach71
MD5

d5bbd9289746dfbcf84812581377a329
SHA1

751c5070b80b796a57667ae5d6770dc75beccf49
SHA256

b034b26b1d08f1d86ecffff6cde9568708af7bf86e743292f6b74c83dc25d1ae
SHA512

4e3139d8c6b0c257041dbf94b4a96359bf09f3866abd1b87615bd54435c5558196f9b8750a5c8b003a889b6c0191855380c4c6ba9f68010023b47c8855d79127
SSDEEP

24576:e845rGHu6gVJKG75oFpA0VWIX4Q2y1q2rJp0:745vRVJKGtSA0VWIonu9p0

Score

10^/10

mrblack linux

Malware Config

Targets

- Target
  
  b034b26b1d08f1d86ecffff6cde9568708af7bf86e743292f6b74c83dc25d1ae
- Size
  
  1.2MB
- MD5
  
  d5bbd9289746dfbcf84812581377a329
- SHA1
  
  751c5070b80b796a57667ae5d6770dc75beccf49
- SHA256
  
  b034b26b1d08f1d86ecffff6cde9568708af7bf86e743292f6b74c83dc25d1ae
- SHA512
  
  4e3139d8c6b0c257041dbf94b4a96359bf09f3866abd1b87615bd54435c5558196f9b8750a5c8b003a889b6c0191855380c4c6ba9f68010023b47c8855d79127
- SSDEEP
  
  24576:e845rGHu6gVJKG75oFpA0VWIX4Q2y1q2rJp0:745vRVJKGtSA0VWIonu9p0
Score

9^/10
- Writes file to system bin folder
- Write file to user bin folder
- Reads runtime system information
  Reads data from /proc virtual filesystem.
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hijack Execution Flow

Privilege Escalation

Hijack Execution Flow

Defense Evasion

Hijack Execution Flow

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1