General
-
Target
download.elf
-
Size
10.4MB
-
Sample
230130-zphyeaed3y
-
MD5
211a8499137c2eb9897f9f86a6f7f345
-
SHA1
3e2c9106ae3d43cf01aa4141e5fe58b028e32bc0
-
SHA256
554f955a405be9393eb2e9af182029029d562d79d23a6a8663704b1c00abfb56
-
SHA512
cc587c5d7defe6dfac41136e903728757feb26a3f6bdf9044fad92701c2023f6776461fc31a68e66d15b28b19c928e70d1dd9d7b069e037bce02126230e89c01
-
SSDEEP
196608:8qVPhXfjBPfgJwuQSA/tYJcb3voiEM/AyKqTAtFrVH+7kkT3+CJrKcDMXAz:8qVPhXp4HA/db3vVT8/rVHRRCJrKcOA
Malware Config
Targets
-
-
Target
download.elf
-
Size
10.4MB
-
MD5
211a8499137c2eb9897f9f86a6f7f345
-
SHA1
3e2c9106ae3d43cf01aa4141e5fe58b028e32bc0
-
SHA256
554f955a405be9393eb2e9af182029029d562d79d23a6a8663704b1c00abfb56
-
SHA512
cc587c5d7defe6dfac41136e903728757feb26a3f6bdf9044fad92701c2023f6776461fc31a68e66d15b28b19c928e70d1dd9d7b069e037bce02126230e89c01
-
SSDEEP
196608:8qVPhXfjBPfgJwuQSA/tYJcb3voiEM/AyKqTAtFrVH+7kkT3+CJrKcDMXAz:8qVPhXp4HA/db3vVT8/rVHRRCJrKcOA
Score8/10-
Modifies hosts file
Adds to hosts file used for mapping hosts to IP addresses.
-
Writes DNS configuration
Writes data to DNS resolver config file.
-
Reads CPU attributes
-
Reads runtime system information
Reads data from /proc virtual filesystem.
-
Writes file to tmp directory
Malware often drops required files in the /tmp directory.
-