4bbe576034f70f82db0d14d476648c40da5d169c59d0de771738dd873ce8f54a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

11ffa33d438282be074f3636b55f8dc9
Size

76KB
Sample

231219-2gayyahcgn
MD5

11ffa33d438282be074f3636b55f8dc9
SHA1

5f87621a0773781fb0db098d9ae62aee760b15f7
SHA256

4bbe576034f70f82db0d14d476648c40da5d169c59d0de771738dd873ce8f54a
SHA512

914ef81558ce840e6f44f6e8959b5b81301442c50602169fbc7985e480160c3959a2e26809db7076b9473bcbce181bd642033ac60d0613525822aa4d8088a376
SSDEEP

1536:WFZ3LYUA0EkGv9AEcrymLREsrOh2/Jn19p0d9CYHqE/EAyZMf9DKPecmCUiyA:WjYUA0EkGv9AEcrymLRE4Oh2/Jn19p0C

Score

7^/10

Malware Config

Targets

- Target
  
  11ffa33d438282be074f3636b55f8dc9
- Size
  
  76KB
- MD5
  
  11ffa33d438282be074f3636b55f8dc9
- SHA1
  
  5f87621a0773781fb0db098d9ae62aee760b15f7
- SHA256
  
  4bbe576034f70f82db0d14d476648c40da5d169c59d0de771738dd873ce8f54a
- SHA512
  
  914ef81558ce840e6f44f6e8959b5b81301442c50602169fbc7985e480160c3959a2e26809db7076b9473bcbce181bd642033ac60d0613525822aa4d8088a376
- SSDEEP
  
  1536:WFZ3LYUA0EkGv9AEcrymLREsrOh2/Jn19p0d9CYHqE/EAyZMf9DKPecmCUiyA:WjYUA0EkGv9AEcrymLRE4Oh2/Jn19p0C
Score

7^/10
- Changes its process name
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1