8ba5e541cb94b6e0f0ee8cddb57ea9b14355f6ef0f52e95850e137f0433e2687 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15b553cb031090e3a28f221c1e1e031c
Size

114KB
Sample

231219-2hqqsadag9
MD5

15b553cb031090e3a28f221c1e1e031c
SHA1

776cc0e59966e7179191ceac6382c8da32654021
SHA256

8ba5e541cb94b6e0f0ee8cddb57ea9b14355f6ef0f52e95850e137f0433e2687
SHA512

d4c476571035caecc82518e4f83f550facb97f3cb5a7b1445eea8e6c55291b46042de40e7e2d2846b990bf0b527843adf9834effdde2531578f882f761321be7
SSDEEP

3072:I6z1WqLgV4ZQGBcD3i/lMpaLhmVAg/iLezaOMzUxglryYlwU+hyn8J2W:j6zaOMzUowU+e8Jn

Score

7^/10

Malware Config

Targets

- Target
  
  15b553cb031090e3a28f221c1e1e031c
- Size
  
  114KB
- MD5
  
  15b553cb031090e3a28f221c1e1e031c
- SHA1
  
  776cc0e59966e7179191ceac6382c8da32654021
- SHA256
  
  8ba5e541cb94b6e0f0ee8cddb57ea9b14355f6ef0f52e95850e137f0433e2687
- SHA512
  
  d4c476571035caecc82518e4f83f550facb97f3cb5a7b1445eea8e6c55291b46042de40e7e2d2846b990bf0b527843adf9834effdde2531578f882f761321be7
- SSDEEP
  
  3072:I6z1WqLgV4ZQGBcD3i/lMpaLhmVAg/iLezaOMzUxglryYlwU+hyn8J2W:j6zaOMzUowU+e8Jn
Score

7^/10
- Changes its process name
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1