ffcb62d46be34f96e0d4df2bcdb8aa3beb1bba4ae344d63c51b017e633dbdb13 | Triage

Sharing

General

Target

a15aabcb9afb989848da47f9b0565791
Size

196KB
Sample

231222-qnbchagegm
MD5

a15aabcb9afb989848da47f9b0565791
SHA1

78596d860e52fef9877761a2834a7c23f8aeb5fa
SHA256

ffcb62d46be34f96e0d4df2bcdb8aa3beb1bba4ae344d63c51b017e633dbdb13
SHA512

f1c141e211fabc9b7c1befa26774bf60c521ecaea6462ca634847bf65c9bc23f3bdf4911ac31d940c0439feb785e3cde37cb32fa07a1c2782a5eb2885cc307e8
SSDEEP

6144:tyj24pR53tA+eBKfflUxmumL3FFZCQpAxbOaajs:t0245De2tUxmumL3FFEQpAxbOaajs

Score

7^/10

Malware Config

Targets

- Target
  
  a15aabcb9afb989848da47f9b0565791
- Size
  
  196KB
- MD5
  
  a15aabcb9afb989848da47f9b0565791
- SHA1
  
  78596d860e52fef9877761a2834a7c23f8aeb5fa
- SHA256
  
  ffcb62d46be34f96e0d4df2bcdb8aa3beb1bba4ae344d63c51b017e633dbdb13
- SHA512
  
  f1c141e211fabc9b7c1befa26774bf60c521ecaea6462ca634847bf65c9bc23f3bdf4911ac31d940c0439feb785e3cde37cb32fa07a1c2782a5eb2885cc307e8
- SSDEEP
  
  6144:tyj24pR53tA+eBKfflUxmumL3FFZCQpAxbOaajs:t0245De2tUxmumL3FFEQpAxbOaajs
Score

7^/10
- Changes its process name
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1