c78fda63829e9e8956d387d397028fe96c30f773905336275effb2468004dee7 | Triage

Sharing

General

Target

4836df83e5070ebdb1811a7dae1bd065
Size

101KB
Sample

231219-24m7saadeq
MD5

4836df83e5070ebdb1811a7dae1bd065
SHA1

19fdd448225119f4df6ed040210d49654f3d1ebc
SHA256

c78fda63829e9e8956d387d397028fe96c30f773905336275effb2468004dee7
SHA512

3a35ba6cd07700d3f8bc5b97c9efa25d2b1bdb11151a8e47969605828eba623148c336e5c9f242810c75f357e001c72ac2fb985d04af48328eac03d336f099c6
SSDEEP

3072:Br7fschxoWhtKKBqSkyHhKbWwhNSEmSK0nMPZg4X9:BHERWSPyHdgUEmSK0nMPZg4X9

Score

7^/10

linux

Malware Config

Targets

- Target
  
  4836df83e5070ebdb1811a7dae1bd065
- Size
  
  101KB
- MD5
  
  4836df83e5070ebdb1811a7dae1bd065
- SHA1
  
  19fdd448225119f4df6ed040210d49654f3d1ebc
- SHA256
  
  c78fda63829e9e8956d387d397028fe96c30f773905336275effb2468004dee7
- SHA512
  
  3a35ba6cd07700d3f8bc5b97c9efa25d2b1bdb11151a8e47969605828eba623148c336e5c9f242810c75f357e001c72ac2fb985d04af48328eac03d336f099c6
- SSDEEP
  
  3072:Br7fschxoWhtKKBqSkyHhKbWwhNSEmSK0nMPZg4X9:BHERWSPyHdgUEmSK0nMPZg4X9
Score

7^/10
- Changes its process name
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1