f1a592208723a66fa51ce1bc35cbd6864e24011c6dc3bcd056346428e4e1c55d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f1a592208723a66fa51ce1bc35cbd6864e24011c6dc3bcd056346428e4e1c55d
Size

937KB
Sample

221203-3rr6msbh61
MD5

ae8ecedb8fcebf7fc48c8fea8f63180e
SHA1

6cf5541546dff30bdb8c5203766ec0826d70d214
SHA256

f1a592208723a66fa51ce1bc35cbd6864e24011c6dc3bcd056346428e4e1c55d
SHA512

43345ae1e8ff08f68c0c523f533ee57a331e0fbf6fbc005b4e1e448dc54314a6cd5476c24f57e4a495f49f4a1a87b72ef309f4fc25844200d3101b51f898389a
SSDEEP

12288:IzIMo5WY2aIARvT44Xx3tWjHNNYDb2alkI4L1AO3ryu/dLdh:sIMoYY2iRrHXxdWhGP2alkI61fft

Score

8^/10

linux

Malware Config

Targets

- Target
  
  f1a592208723a66fa51ce1bc35cbd6864e24011c6dc3bcd056346428e4e1c55d
- Size
  
  937KB
- MD5
  
  ae8ecedb8fcebf7fc48c8fea8f63180e
- SHA1
  
  6cf5541546dff30bdb8c5203766ec0826d70d214
- SHA256
  
  f1a592208723a66fa51ce1bc35cbd6864e24011c6dc3bcd056346428e4e1c55d
- SHA512
  
  43345ae1e8ff08f68c0c523f533ee57a331e0fbf6fbc005b4e1e448dc54314a6cd5476c24f57e4a495f49f4a1a87b72ef309f4fc25844200d3101b51f898389a
- SSDEEP
  
  12288:IzIMo5WY2aIARvT44Xx3tWjHNNYDb2alkI4L1AO3ryu/dLdh:sIMoYY2iRrHXxdWhGP2alkI61fft
Score

8^/10
- Modifies hosts file
  Adds to hosts file used for mapping hosts to IP addresses.
- Writes DNS configuration
  Writes data to DNS resolver config file.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Dynamic Resolution

Exfiltration

Impact

Tasks

static1

behavioral1