b6173cea0bae6f5405c59da64eaae455fb0638809a2ea583c0486f257e934d9d | Triage

Sharing

General

Target

b6173cea0bae6f5405c59da64eaae455fb0638809a2ea583c0486f257e934d9d
Size

14KB
Sample

230129-z48glsdb56
MD5

b9509d8f38a9dec39cd732256df1d208
SHA1

d8cb7fd7a23fca6784786d98c98b203fea0a616d
SHA256

b6173cea0bae6f5405c59da64eaae455fb0638809a2ea583c0486f257e934d9d
SHA512

305be85d1c727d9b88463263f498da6160749ce9cf21aa9c468ef2c0df8bbcc35194437c624a845932f52c489c81d351ea9ca7afee62ec267783fde6edbe21d4
SSDEEP

96:RCw2TPnBWBmnZ/wTozrmf100kuEzANKAdaC75wKA/613iEGii/OTvA/xKTSiVr3d:R4zn8cJwTT9xEziKqhyKAJgEATSi

Score

10^/10

botnet linux

Malware Config

Targets

- Target
  
  b6173cea0bae6f5405c59da64eaae455fb0638809a2ea583c0486f257e934d9d
- Size
  
  14KB
- MD5
  
  b9509d8f38a9dec39cd732256df1d208
- SHA1
  
  d8cb7fd7a23fca6784786d98c98b203fea0a616d
- SHA256
  
  b6173cea0bae6f5405c59da64eaae455fb0638809a2ea583c0486f257e934d9d
- SHA512
  
  305be85d1c727d9b88463263f498da6160749ce9cf21aa9c468ef2c0df8bbcc35194437c624a845932f52c489c81d351ea9ca7afee62ec267783fde6edbe21d4
- SSDEEP
  
  96:RCw2TPnBWBmnZ/wTozrmf100kuEzANKAdaC75wKA/613iEGii/OTvA/xKTSiVr3d:R4zn8cJwTT9xEziKqhyKAJgEATSi
Score

8^/10
- Modifies hosts file
  Adds to hosts file used for mapping hosts to IP addresses.
- Writes DNS configuration
  Writes data to DNS resolver config file.
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Dynamic Resolution

Impact

Tasks

static1

behavioral1