95f02f54d09af2fcda7797d61d58d6d01674bf2f2491dc7cc0e3189f432744a5 | Triage

Sharing

General

Target

95f02f54d09af2fcda7797d61d58d6d01674bf2f2491dc7cc0e3189f432744a5elf_JC.elf
Size

74KB
Sample

231005-v83dyafc99
MD5

2b777dc4d32cc653db5a84bcdefeff3a
SHA1

61eabd62d174a9434c7d6412c14b53a538b689da
SHA256

95f02f54d09af2fcda7797d61d58d6d01674bf2f2491dc7cc0e3189f432744a5
SHA512

d93bfc1f395b92fcfa677757df357f62e32f8e8ee06c34a05af7bf1a43fac1fd3894d467d1016a2f1a1fdd0775d0b16b47adf02b7d3d8e2ffb018d71a3c11b27
SSDEEP

1536:mLIgNmUBSI81JBc2kr6BhJSud0y3zsvmMZkAAwCkKwbZn:mLVYmSNJBvyZuWyjsv/JEwbZn

Score

7^/10

Malware Config

Targets

- Target
  
  95f02f54d09af2fcda7797d61d58d6d01674bf2f2491dc7cc0e3189f432744a5elf_JC.elf
- Size
  
  74KB
- MD5
  
  2b777dc4d32cc653db5a84bcdefeff3a
- SHA1
  
  61eabd62d174a9434c7d6412c14b53a538b689da
- SHA256
  
  95f02f54d09af2fcda7797d61d58d6d01674bf2f2491dc7cc0e3189f432744a5
- SHA512
  
  d93bfc1f395b92fcfa677757df357f62e32f8e8ee06c34a05af7bf1a43fac1fd3894d467d1016a2f1a1fdd0775d0b16b47adf02b7d3d8e2ffb018d71a3c11b27
- SSDEEP
  
  1536:mLIgNmUBSI81JBc2kr6BhJSud0y3zsvmMZkAAwCkKwbZn:mLVYmSNJBvyZuWyjsv/JEwbZn
Score

7^/10
- Changes its process name
- Deletes itself
- Enumerates active TCP sockets
  Gets active TCP sockets from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1