7ca1174f6c17577574afae0def3cb001cd2fa19ca2841533282c3af5b2040521 | Triage

Resubmissions

31-03-2023 20:06

230331-yvq1jaed4x 8

31-03-2023 20:03

230331-ys3xbada67 8

Sharing

General

Target

MultiThreadedDownloader (1)
Size

6.5MB
Sample

230331-ys3xbada67
MD5

697ab54c95f4a7fd0bb73a052c4d2ef0
SHA1

322b19245afb197c5733c53bed9bc5f89df3abfc
SHA256

7ca1174f6c17577574afae0def3cb001cd2fa19ca2841533282c3af5b2040521
SHA512

1679bef9756e640e9cb04211e2c44032e4d27254a29c54cc83f9981318ba24f642ade851e69e0a719812425f98ff2fea0d5e2f4301c95942f2cfa5915e0e446a
SSDEEP

98304:qWOJC74cfzAEnHJ1XTlFnUF+ie/yj4qd8J:ZJVkqT

Score

8^/10

linux

Malware Config

Targets

- Target
  
  MultiThreadedDownloader (1)
- Size
  
  6.5MB
- MD5
  
  697ab54c95f4a7fd0bb73a052c4d2ef0
- SHA1
  
  322b19245afb197c5733c53bed9bc5f89df3abfc
- SHA256
  
  7ca1174f6c17577574afae0def3cb001cd2fa19ca2841533282c3af5b2040521
- SHA512
  
  1679bef9756e640e9cb04211e2c44032e4d27254a29c54cc83f9981318ba24f642ade851e69e0a719812425f98ff2fea0d5e2f4301c95942f2cfa5915e0e446a
- SSDEEP
  
  98304:qWOJC74cfzAEnHJ1XTlFnUF+ie/yj4qd8J:ZJVkqT
Score

8^/10
- Modifies hosts file
  Adds to hosts file used for mapping hosts to IP addresses.
- Writes DNS configuration
  Writes data to DNS resolver config file.
- Enumerates kernel/hardware configuration
  Reads contents of /sys virtual filesystem to enumerate system information.
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Dynamic Resolution

Impact

Tasks

static1

behavioral1