Overview

overview

8

Static

static

7

326383ed5b...df904e

ubuntu-18.04-amd64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    326383ed5b2480fac2b5aad00c7ae198f290f0ec4c86503b86fabe748cdf904e

  • Size

    1.3MB

  • Sample

    230328-plnz5sah99

  • MD5

    6ef8eeea8d289bf1ffce142e2df348ab

  • SHA1

    5ac80ab0a218144b515e24ca854ed4f05c03e635

  • SHA256

    326383ed5b2480fac2b5aad00c7ae198f290f0ec4c86503b86fabe748cdf904e

  • SHA512

    4e045bfbac0d36dc9473481a6c46e911fbe1bc2b24e6bfd9a5ce8bb681acb6d7ec9754f433a1dba51a62dd0a4e278c13e5074fe143266d39d073d3abf9047b9a

  • SSDEEP

    24576:3pHfCA9zTKrUXa5JTrMPnZz129Mbej/0RzZhstHm37BEYq7PrY9:3tCA9Da/TaZzk2a/09PslmrzqbrY9

Score
8/10
linuxupx

Malware Config

Targets

    • Target

      326383ed5b2480fac2b5aad00c7ae198f290f0ec4c86503b86fabe748cdf904e

    • Size

      1.3MB

    • MD5

      6ef8eeea8d289bf1ffce142e2df348ab

    • SHA1

      5ac80ab0a218144b515e24ca854ed4f05c03e635

    • SHA256

      326383ed5b2480fac2b5aad00c7ae198f290f0ec4c86503b86fabe748cdf904e

    • SHA512

      4e045bfbac0d36dc9473481a6c46e911fbe1bc2b24e6bfd9a5ce8bb681acb6d7ec9754f433a1dba51a62dd0a4e278c13e5074fe143266d39d073d3abf9047b9a

    • SSDEEP

      24576:3pHfCA9zTKrUXa5JTrMPnZz129Mbej/0RzZhstHm37BEYq7PrY9:3tCA9Da/TaZzk2a/09PslmrzqbrY9

    Score
    8/10

    • Writes DNS configuration

      Writes data to DNS resolver config file.

    • Reads runtime system information

      Reads data from /proc virtual filesystem.

    • Writes file to tmp directory

      Malware often drops required files in the /tmp directory.

    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Dynamic Resolution

1
T1568

Impact

Tasks