e773712886fb282fc5ac0a88f1fc353d64fedbcf0e0eb8cb605ce18d925eea69 | Triage

Sharing

General

Target

a5773df38478e815ff728c1919222703.elf
Size

45KB
Sample

221204-pbfwsaca8v
MD5

a5773df38478e815ff728c1919222703
SHA1

ef98a2200a602361daa49479ac6dceabdd4176c6
SHA256

e773712886fb282fc5ac0a88f1fc353d64fedbcf0e0eb8cb605ce18d925eea69
SHA512

743cadf25fdc9733cd4153ff3d0f4cae0ede1c986c35a3db3aa10e7b02a5ce89680afa0f69640ed3f71b2abdcb057a459558b2d50a547cf90d98b7c655bd177f
SSDEEP

768:D/TYCoIxdEk+AxoTZAZHFeq8b3k09q3UELbUXfi6nVMQHI4vcGpvS:DECFd+A6YHAxkdLRQZS

Score

9^/10

Malware Config

Targets

- Target
  
  a5773df38478e815ff728c1919222703.elf
- Size
  
  45KB
- MD5
  
  a5773df38478e815ff728c1919222703
- SHA1
  
  ef98a2200a602361daa49479ac6dceabdd4176c6
- SHA256
  
  e773712886fb282fc5ac0a88f1fc353d64fedbcf0e0eb8cb605ce18d925eea69
- SHA512
  
  743cadf25fdc9733cd4153ff3d0f4cae0ede1c986c35a3db3aa10e7b02a5ce89680afa0f69640ed3f71b2abdcb057a459558b2d50a547cf90d98b7c655bd177f
- SSDEEP
  
  768:D/TYCoIxdEk+AxoTZAZHFeq8b3k09q3UELbUXfi6nVMQHI4vcGpvS:DECFd+A6YHAxkdLRQZS
Score

9^/10
- Modifies the Watchdog daemon
  Malware like Mirai modify the Watchdog to prevent it restarting an infected system.
- Writes file to system bin folder
- Reads runtime system information
  Reads data from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hijack Execution Flow

Privilege Escalation

Hijack Execution Flow

Defense Evasion

Hijack Execution Flow

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1