fd8f7d074875779a18d38b54bef693c57bad03294ca3e71161ac3b1d16157903 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7d042466e63f5c66187d7a982583f75d
Size

25KB
Sample

231220-cpsfhsgahj
MD5

7d042466e63f5c66187d7a982583f75d
SHA1

e2eef8ece1ac6f5d7653c908b597efc4ce811da7
SHA256

fd8f7d074875779a18d38b54bef693c57bad03294ca3e71161ac3b1d16157903
SHA512

0c7b66dc6a677fc907a624c77ce8cd48dd2eae3c4197c15664e51ea4abf2de66534fb769cb09fb2faa8d64aa9dc2afae8f1855c8225398b1bef88d01594f7f89
SSDEEP

384:Jhblb4/3Ep2W7Tle5zj6jGjiBkx+1uS2eT2iObRfYeXALrjYTHzO64:Jh54sp2W7peVYV5j2RYPjYTz

Score

7^/10

linux

Malware Config

Targets

- Target
  
  7d042466e63f5c66187d7a982583f75d
- Size
  
  25KB
- MD5
  
  7d042466e63f5c66187d7a982583f75d
- SHA1
  
  e2eef8ece1ac6f5d7653c908b597efc4ce811da7
- SHA256
  
  fd8f7d074875779a18d38b54bef693c57bad03294ca3e71161ac3b1d16157903
- SHA512
  
  0c7b66dc6a677fc907a624c77ce8cd48dd2eae3c4197c15664e51ea4abf2de66534fb769cb09fb2faa8d64aa9dc2afae8f1855c8225398b1bef88d01594f7f89
- SSDEEP
  
  384:Jhblb4/3Ep2W7Tle5zj6jGjiBkx+1uS2eT2iObRfYeXALrjYTHzO64:Jh54sp2W7peVYV5j2RYPjYTz
Score

7^/10
- Changes its process name
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Writes file to system bin folder
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Hijack Execution Flow

Privilege Escalation

Hijack Execution Flow

Defense Evasion

Hijack Execution Flow

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1