ff3e0b6e63759c7abe7a2e2b8bea8f9381da832a9cd1dfb515330d9dee200ca0 | Triage

Sharing

General

Target

33964f063c8c480630410364ad889b20
Size

116KB
Sample

231219-2v3wwaabg4
MD5

33964f063c8c480630410364ad889b20
SHA1

eeb123b5f14b67ce3d78e385c8b1139c40ce8453
SHA256

ff3e0b6e63759c7abe7a2e2b8bea8f9381da832a9cd1dfb515330d9dee200ca0
SHA512

1ad91d0560c33dd101780a15b5e78df83d586de47a38344fb168c104e7d0bbb997515f5466106ccd8a250cec32ca3d4e2ddeee2b443df5c60b603c4bc1c15101
SSDEEP

1536:/VNy7K0v/VkKnGVI8kh/NdRkVGnYQr/2rKIPFn64OoeQeul1wDSx7Ee7G+vg8:qnyiz464Ooeo11KeS8

Score

7^/10

Malware Config

Targets

- Target
  
  33964f063c8c480630410364ad889b20
- Size
  
  116KB
- MD5
  
  33964f063c8c480630410364ad889b20
- SHA1
  
  eeb123b5f14b67ce3d78e385c8b1139c40ce8453
- SHA256
  
  ff3e0b6e63759c7abe7a2e2b8bea8f9381da832a9cd1dfb515330d9dee200ca0
- SHA512
  
  1ad91d0560c33dd101780a15b5e78df83d586de47a38344fb168c104e7d0bbb997515f5466106ccd8a250cec32ca3d4e2ddeee2b443df5c60b603c4bc1c15101
- SSDEEP
  
  1536:/VNy7K0v/VkKnGVI8kh/NdRkVGnYQr/2rKIPFn64OoeQeul1wDSx7Ee7G+vg8:qnyiz464Ooeo11KeS8
Score

7^/10
- Changes its process name
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1