a0d58f247fe8e00e639ceddf2a86c15d2ff336b6ba95c5a9f6fa5263ce0bc89d | Triage

Sharing

General

Target

aa04f28acbed6b7c7b76b412bb101b0e.elf
Size

24KB
Sample

230328-kz1tmsaa54
MD5

aa04f28acbed6b7c7b76b412bb101b0e
SHA1

efb04261c03254af3a2334bedf9897a126caaa5a
SHA256

a0d58f247fe8e00e639ceddf2a86c15d2ff336b6ba95c5a9f6fa5263ce0bc89d
SHA512

6459d6658c7fb20824200004cf8e0eef3d4965d38c2198df87caeb1bd70bb9e64ff1c89178e9964c6c033f0c0f2d3c463b9d9271780269379b54bae8887bf2b6
SSDEEP

768:obrQlS07dEv0UXqUhvQE+CXQKMQKCXBpbnZqSWvZ:4QlS07FUXqIYSXQKqutqR

Score

9^/10

upx

Malware Config

Targets

- Target
  
  aa04f28acbed6b7c7b76b412bb101b0e.elf
- Size
  
  24KB
- MD5
  
  aa04f28acbed6b7c7b76b412bb101b0e
- SHA1
  
  efb04261c03254af3a2334bedf9897a126caaa5a
- SHA256
  
  a0d58f247fe8e00e639ceddf2a86c15d2ff336b6ba95c5a9f6fa5263ce0bc89d
- SHA512
  
  6459d6658c7fb20824200004cf8e0eef3d4965d38c2198df87caeb1bd70bb9e64ff1c89178e9964c6c033f0c0f2d3c463b9d9271780269379b54bae8887bf2b6
- SSDEEP
  
  768:obrQlS07dEv0UXqUhvQE+CXQKMQKCXBpbnZqSWvZ:4QlS07FUXqIYSXQKqutqR
Score

9^/10
- Modifies the Watchdog daemon
  Malware like Mirai modify the Watchdog to prevent it restarting an infected system.
- Writes file to system bin folder
- Reads runtime system information
  Reads data from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hijack Execution Flow

Privilege Escalation

Hijack Execution Flow

Defense Evasion

Impair Defenses

Hijack Execution Flow

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1