b380cc88a9f6b541e02e4f300dd1b9263bcf41f5ac1a6f58bd0e43039882b611 | Triage

Sharing

General

Target

7a2447eb4cc11565ae926d0aa75bfe3a.bin
Size

27KB
Sample

231011-zm2bzacg4y
MD5

64b47f388980f4bbc55c830610e62feb
SHA1

250e10e087293a5ac6f53b9606e4545236ca5e29
SHA256

b380cc88a9f6b541e02e4f300dd1b9263bcf41f5ac1a6f58bd0e43039882b611
SHA512

006226c929d39dc5695434faf2ca841691fc93eecbef091a3de5c52ec060efe6c1af27ea0fe29c3c84c71ea52c74e4465e3310edaf8406a3feabe3bc7f91d037
SSDEEP

768:4Z6jJvKdBZwHuNhVNRSNPMysxB9Zik0zFQ0+ook92Oh:44vKdBGH+hVi1uh0zFjr3

Score

7^/10

Malware Config

Targets

- Target
  
  acf7bd2d231a075090b23bbe305ce4b3207bd5d0c88d7b9bbbf8fe8d5a54a1ff.elf
- Size
  
  79KB
- MD5
  
  7a2447eb4cc11565ae926d0aa75bfe3a
- SHA1
  
  9bd7d0ddc5b469cd59ee09e35d6a34ac23480e70
- SHA256
  
  acf7bd2d231a075090b23bbe305ce4b3207bd5d0c88d7b9bbbf8fe8d5a54a1ff
- SHA512
  
  42b221a42d0aa96b4861737da25148048e8c87651cbdb343e5877ea75ce9aa683affe675ff7b488746007844a1a449cd27947ac791f7cc23077a4a2268d1acec
- SSDEEP
  
  1536:ppFcbuIhXI7RNt0cf35L7sgkc7Nw5TetYXkuI3h:pF0cf35L7sgkCNi5XkuS
Score

7^/10
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Writes DNS configuration
  Writes data to DNS resolver config file.
- Enumerates running processes
  Discovers information about currently running processes on the system
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Dynamic Resolution

Exfiltration

Impact

Tasks

static1

behavioral1