242f9c3f92f51bc32fcd34624ca03cd26f12de4a2d48da194bdd6b0053e3ac3c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

641553c1c1e08bd33ea0df8e262fd6fc
Size

107KB
Sample

231226-lhsblsaba4
MD5

641553c1c1e08bd33ea0df8e262fd6fc
SHA1

5b05232c721dc47bf3741fd30590c0a6b6a6a2b5
SHA256

242f9c3f92f51bc32fcd34624ca03cd26f12de4a2d48da194bdd6b0053e3ac3c
SHA512

561d99d1378314b3fc223a6e483ff558497ea87b317708b6f76b4dcefb4778c8626459723d514892546cf4dfdaa17133554de7e3403450639c8ca02165fa449e
SSDEEP

3072:6L1+LQVorVfJNV00/H6Sc0FtCDHeMvDOC0HG19pTo0Kv/HBKK+XBKoCgZPY4gQLx:6L1+LQVorVfJNV00/H6Sc0FtCDHeMvDf

Score

7^/10

Malware Config

Targets

- Target
  
  641553c1c1e08bd33ea0df8e262fd6fc
- Size
  
  107KB
- MD5
  
  641553c1c1e08bd33ea0df8e262fd6fc
- SHA1
  
  5b05232c721dc47bf3741fd30590c0a6b6a6a2b5
- SHA256
  
  242f9c3f92f51bc32fcd34624ca03cd26f12de4a2d48da194bdd6b0053e3ac3c
- SHA512
  
  561d99d1378314b3fc223a6e483ff558497ea87b317708b6f76b4dcefb4778c8626459723d514892546cf4dfdaa17133554de7e3403450639c8ca02165fa449e
- SSDEEP
  
  3072:6L1+LQVorVfJNV00/H6Sc0FtCDHeMvDOC0HG19pTo0Kv/HBKK+XBKoCgZPY4gQLx:6L1+LQVorVfJNV00/H6Sc0FtCDHeMvDf
Score

7^/10
- Changes its process name
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1