b9b79840df75a566d2d7c600dcee4b58d034fcda457dd6eeff76c6d59481074e | Triage

Sharing

General

Target

678538e0b67a816a3ed3f0604b788da3
Size

126KB
Sample

231219-3fz24sfgck
MD5

678538e0b67a816a3ed3f0604b788da3
SHA1

eb5703ac7b14c55a31938e2227d960598efe03cb
SHA256

b9b79840df75a566d2d7c600dcee4b58d034fcda457dd6eeff76c6d59481074e
SHA512

4a2ab7797a52f6c6db62a3486acb3cc6a8ce074786aba27fe4fe49b64132bc89c2df9e89ed7c75707410a6ceb24ef3641bd380edb64e5d2189f234b9eca85da1
SSDEEP

3072:ni1eTHqJR3P8Utedp9F0RJ+gr4n+h+l8JDrnmsHSANtO4h:nVjq3UUteQR8gr4+MQDrnmsHSAbO4h

Score

7^/10

linux

Malware Config

Targets

- Target
  
  678538e0b67a816a3ed3f0604b788da3
- Size
  
  126KB
- MD5
  
  678538e0b67a816a3ed3f0604b788da3
- SHA1
  
  eb5703ac7b14c55a31938e2227d960598efe03cb
- SHA256
  
  b9b79840df75a566d2d7c600dcee4b58d034fcda457dd6eeff76c6d59481074e
- SHA512
  
  4a2ab7797a52f6c6db62a3486acb3cc6a8ce074786aba27fe4fe49b64132bc89c2df9e89ed7c75707410a6ceb24ef3641bd380edb64e5d2189f234b9eca85da1
- SSDEEP
  
  3072:ni1eTHqJR3P8Utedp9F0RJ+gr4n+h+l8JDrnmsHSANtO4h:nVjq3UUteQR8gr4+MQDrnmsHSAbO4h
Score

7^/10
- Changes its process name
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1