fa805d21722324e9ee86195ee16f68ba69828f1c5f08c6aff6eab3e80db2f129 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0xst2.x86.elf
Size

53KB
Sample

231014-bwwk3sbe86
MD5

3911fe3f0bf526a9d4be8d38bbf10ae5
SHA1

84da29098994c38ca9c5d215b7dc8a8639dae911
SHA256

fa805d21722324e9ee86195ee16f68ba69828f1c5f08c6aff6eab3e80db2f129
SHA512

d550658ff6c516a2de1c29b7e3181943175528ba4957095272b86fe98a90742d7a6cb29d7af73909dd970a17b5d51f0ba1db5d134c407b5893554fe3aa9c3a6e
SSDEEP

768:lmtLSokKyc/+l+KvvcaTd1+A5fSsf26QPAzkIcOZHeqG8DV6wSDHDIv:lmtuBKz/0kah1lhvQPAdcsHeq6wSzD

Score

7^/10

linux persistence

Malware Config

Targets

- Target
  
  0xst2.x86.elf
- Size
  
  53KB
- MD5
  
  3911fe3f0bf526a9d4be8d38bbf10ae5
- SHA1
  
  84da29098994c38ca9c5d215b7dc8a8639dae911
- SHA256
  
  fa805d21722324e9ee86195ee16f68ba69828f1c5f08c6aff6eab3e80db2f129
- SHA512
  
  d550658ff6c516a2de1c29b7e3181943175528ba4957095272b86fe98a90742d7a6cb29d7af73909dd970a17b5d51f0ba1db5d134c407b5893554fe3aa9c3a6e
- SSDEEP
  
  768:lmtLSokKyc/+l+KvvcaTd1+A5fSsf26QPAzkIcOZHeqG8DV6wSDHDIv:lmtuBKz/0kah1lhvQPAdcsHeq6wSzD
Score

7^/10

persistence
- Deletes itself
- Modifies init.d
  Adds/modifies system service, likely for persistence.
  persistence
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Privilege Escalation

Boot or Logon Autostart Execution

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1