55377bf19fa209cfe1b4172e3c784656381f050fc6bf09aef0b7363320e94d6a | Triage

Sharing

General

Target

55377bf19fa209cfe1b4172e3c784656381f050fc6bf09aef0b7363320e94d6a_JC.elf
Size

80KB
Sample

231011-2kkmjshb8w
MD5

5b17192269cef3ef84f2f34da4c8a8da
SHA1

22a603b7afd713e6ef6178d8f78815266ee90fa0
SHA256

55377bf19fa209cfe1b4172e3c784656381f050fc6bf09aef0b7363320e94d6a
SHA512

4f2efa99dc5a8b1ac271ae0e4bf6a8cfeb0443ab1ded32ccb469ed7078425187e8dccca534739b067850a1d74a4bc03e73e5eef52cd66f59612652ad3d90c226
SSDEEP

1536:OBnI3GJbuZ1q//jOaWt4ZczWIIRelOyL1idVDdAeY7wrJA9nP:b30uHA/Caq4ZczWI6VDdAePrJARP

Score

7^/10

Malware Config

Targets

- Target
  
  55377bf19fa209cfe1b4172e3c784656381f050fc6bf09aef0b7363320e94d6a_JC.elf
- Size
  
  80KB
- MD5
  
  5b17192269cef3ef84f2f34da4c8a8da
- SHA1
  
  22a603b7afd713e6ef6178d8f78815266ee90fa0
- SHA256
  
  55377bf19fa209cfe1b4172e3c784656381f050fc6bf09aef0b7363320e94d6a
- SHA512
  
  4f2efa99dc5a8b1ac271ae0e4bf6a8cfeb0443ab1ded32ccb469ed7078425187e8dccca534739b067850a1d74a4bc03e73e5eef52cd66f59612652ad3d90c226
- SSDEEP
  
  1536:OBnI3GJbuZ1q//jOaWt4ZczWIIRelOyL1idVDdAeY7wrJA9nP:b30uHA/Caq4ZczWI6VDdAePrJARP
Score

7^/10
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Writes DNS configuration
  Writes data to DNS resolver config file.
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Dynamic Resolution

Exfiltration

Impact

Tasks

static1

behavioral1