123e6d1138bfd58de1173818d82b504ef928d5a3be7756dd627c594de4aad096 | Triage

Resubmissions

30/11/2022, 22:53

221130-2t4rsacd63 9

Sharing

General

Target

123e6d1138bfd58de1173818d82b504ef928d5a3be7756dd627c594de4aad096
Size

22KB
Sample

221130-2t4rsacd63
MD5

5eeaf0c650a23f51012fdf4d6ce9e8cb
SHA1

e7513033257428aa0f2018b5920a68e1cd492a8d
SHA256

123e6d1138bfd58de1173818d82b504ef928d5a3be7756dd627c594de4aad096
SHA512

e6a8dbb741995533d91e58df8a34a936e1140d95a5cdbee83d58072d2aa5dd98405823c8182aebd6dfec82fbcef520f68265804239a7eeccd46979f9e30f0f91
SSDEEP

384:awi1TzSNCnw5q8I1oJKhA0vk6D0qTAK32:aT1qNCnwfI1ok26Ddsu2

Score

9^/10

linux

Malware Config

Targets

- Target
  
  123e6d1138bfd58de1173818d82b504ef928d5a3be7756dd627c594de4aad096
- Size
  
  22KB
- MD5
  
  5eeaf0c650a23f51012fdf4d6ce9e8cb
- SHA1
  
  e7513033257428aa0f2018b5920a68e1cd492a8d
- SHA256
  
  123e6d1138bfd58de1173818d82b504ef928d5a3be7756dd627c594de4aad096
- SHA512
  
  e6a8dbb741995533d91e58df8a34a936e1140d95a5cdbee83d58072d2aa5dd98405823c8182aebd6dfec82fbcef520f68265804239a7eeccd46979f9e30f0f91
- SSDEEP
  
  384:awi1TzSNCnw5q8I1oJKhA0vk6D0qTAK32:aT1qNCnwfI1ok26Ddsu2
Score

9^/10
- Deletes system logs
- Modifies hosts file
  Adds to hosts file used for mapping hosts to IP addresses.
- Writes DNS configuration
  Writes data to DNS resolver config file.
- Reads runtime system information
  Reads data from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal on Host

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Dynamic Resolution

Exfiltration

Impact

Tasks

static1

behavioral1