rekoobe | 7b88fa41d6a03aeda120627d3363b739a30fe00008ce8d848c2cbb5b4473d8bc | Triage

Sharing

General

Target

7b88fa41d6a03aeda120627d3363b739a30fe00008ce8d848c2cbb5b4473d8bc
Size

84KB
Sample

221203-3snjvaca4z
MD5

edf7237aa215ce189647a0e231555df0
SHA1

80ba296be9ba1f945500bd468026157fad4f7fb8
SHA256

7b88fa41d6a03aeda120627d3363b739a30fe00008ce8d848c2cbb5b4473d8bc
SHA512

b0eb2392a5895529a0f251345219106fdb1ce62ca7cb45f4859ea2f0621b03a3177eb90076682d4bb3c5e88f962c5d039df0cd2f86b5735c750909aa96b08667
SSDEEP

1536:rV3T+Q0YNuV8NnUTnhhW+LUlP7oqHekyN/1H5xuM8VS:rVqxWUTnhhW+LOoq+xN/1Zx2o

Score

10^/10

rekoobe linux

Malware Config

Extracted

Family

rekoobe

C2

47.242.121.34:80

Targets

- Target
  
  7b88fa41d6a03aeda120627d3363b739a30fe00008ce8d848c2cbb5b4473d8bc
- Size
  
  84KB
- MD5
  
  edf7237aa215ce189647a0e231555df0
- SHA1
  
  80ba296be9ba1f945500bd468026157fad4f7fb8
- SHA256
  
  7b88fa41d6a03aeda120627d3363b739a30fe00008ce8d848c2cbb5b4473d8bc
- SHA512
  
  b0eb2392a5895529a0f251345219106fdb1ce62ca7cb45f4859ea2f0621b03a3177eb90076682d4bb3c5e88f962c5d039df0cd2f86b5735c750909aa96b08667
- SSDEEP
  
  1536:rV3T+Q0YNuV8NnUTnhhW+LUlP7oqHekyN/1H5xuM8VS:rVqxWUTnhhW+LOoq+xN/1Zx2o
Score

8^/10
- Writes DNS configuration
  Writes data to DNS resolver config file.
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Dynamic Resolution

Impact

Tasks

static1

behavioral1