57ce9d044f9456afcd90d1139c9ee3f5fd37799c6ef0e36d340236ab5d86e8f1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6c90cf000f07e0e85f6e1641e9e301e4
Size

197KB
Sample

231219-3htm4sbdg7
MD5

6c90cf000f07e0e85f6e1641e9e301e4
SHA1

cf32545bd98be384708cd59820b22e7097386587
SHA256

57ce9d044f9456afcd90d1139c9ee3f5fd37799c6ef0e36d340236ab5d86e8f1
SHA512

63784360e94d80dac7160f08c8dd84c478faaa912aa38ead5fb2b6d9ade9ff22d2ba4f6ec67690a5b56e3765c6f4da20b44207b331602009fea02d94e2f50c48
SSDEEP

6144:wPNnIadaHNKgTk4ENUdAuNU49YxjngM/9YklmNwEljdRT:badaHNKgo4uaAuYNZ/yklmNFljdRT

Score

7^/10

Malware Config

Targets

- Target
  
  6c90cf000f07e0e85f6e1641e9e301e4
- Size
  
  197KB
- MD5
  
  6c90cf000f07e0e85f6e1641e9e301e4
- SHA1
  
  cf32545bd98be384708cd59820b22e7097386587
- SHA256
  
  57ce9d044f9456afcd90d1139c9ee3f5fd37799c6ef0e36d340236ab5d86e8f1
- SHA512
  
  63784360e94d80dac7160f08c8dd84c478faaa912aa38ead5fb2b6d9ade9ff22d2ba4f6ec67690a5b56e3765c6f4da20b44207b331602009fea02d94e2f50c48
- SSDEEP
  
  6144:wPNnIadaHNKgTk4ENUdAuNU49YxjngM/9YklmNwEljdRT:badaHNKgo4uaAuYNZ/yklmNFljdRT
Score

7^/10
- Changes its process name
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1