04c7a062a9bd9fe6fe1b0c4e72e319aff866a42b21d8971f1215c347ee5e8980 | Triage

Sharing

General

Target

04c7a062a9bd9fe6fe1b0c4e72e319aff866a42b21d8971f1215c347ee5e8980
Size

6.5MB
Sample

230328-plrq2acf3s
MD5

01d0b01afb5c2e650dafde87b56fa788
SHA1

3fc671df6c6bc8340fcb40af29151a5b05673e3e
SHA256

04c7a062a9bd9fe6fe1b0c4e72e319aff866a42b21d8971f1215c347ee5e8980
SHA512

2eb72a5bbadc304bbf99319d49f589b2e5cbd92c672c31c9ba38479e4389e432a30d74b536ebaad0a842ca7bfb29f4dd9a3e9ac5811a91ba97b0a8d3f2d4a55b
SSDEEP

98304:hDzErdLEXa5/SvWC2WOLmLvoUcWgAsZ8ELk/ye:h8rdYXeEWbXIoUtbsZ8wkqe

Score

8^/10

linux

Malware Config

Targets

- Target
  
  04c7a062a9bd9fe6fe1b0c4e72e319aff866a42b21d8971f1215c347ee5e8980
- Size
  
  6.5MB
- MD5
  
  01d0b01afb5c2e650dafde87b56fa788
- SHA1
  
  3fc671df6c6bc8340fcb40af29151a5b05673e3e
- SHA256
  
  04c7a062a9bd9fe6fe1b0c4e72e319aff866a42b21d8971f1215c347ee5e8980
- SHA512
  
  2eb72a5bbadc304bbf99319d49f589b2e5cbd92c672c31c9ba38479e4389e432a30d74b536ebaad0a842ca7bfb29f4dd9a3e9ac5811a91ba97b0a8d3f2d4a55b
- SSDEEP
  
  98304:hDzErdLEXa5/SvWC2WOLmLvoUcWgAsZ8ELk/ye:h8rdYXeEWbXIoUtbsZ8wkqe
Score

8^/10
- Modifies hosts file
  Adds to hosts file used for mapping hosts to IP addresses.
- Writes DNS configuration
  Writes data to DNS resolver config file.
- Enumerates kernel/hardware configuration
  Reads contents of /sys virtual filesystem to enumerate system information.
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Dynamic Resolution

Impact

Tasks

static1

behavioral1