7bc084dfc22cf4dc0d5eec7b08bd4c463d73f6c67e2d086d0f53f6a95ead365c | Triage

Sharing

General

Target

2d028e2a880a075ba0e86e4a3054874a
Size

575KB
Sample

231231-h3p57sgcb6
MD5

2d028e2a880a075ba0e86e4a3054874a
SHA1

3fcaae8700793fb6de0ac6f54feeaedf6b553922
SHA256

7bc084dfc22cf4dc0d5eec7b08bd4c463d73f6c67e2d086d0f53f6a95ead365c
SHA512

5274cc63399a0f52e06ee6507ed5cd2ff893697de8d3f582ecd7f02f2b879470ef40637de69c2a0ce4cc9b9f26ecd99525d7cd7015758f01e838bade5cba9995
SSDEEP

12288:vgePBDucXOIzbBewOBXnFRNB6xxx1xuGkzCtyOaG4d1iqOVW:VuqzbBewmVR2xxxTulua/bio

Score

7^/10

evasion linux

Malware Config

Targets

- Target
  
  legend/1
- Size
  
  189B
- MD5
  
  7ce286cb3657d70bfc58a82a51e88d68
- SHA1
  
  180cd8a95b566a500b2cb9ca11d8cefc0d4456a3
- SHA256
  
  6334df987f3a91ca9f313090ab96cf9ea1c8427c2f0fdb7508fa0dd4169aeec8
- SHA512
  
  0b0a6672c454230b83f8c2c023b037ed1015ce2f775a6687d5e834a2734a81d4aed5a38276c476dffd65361817a999a248944575250aa696b24102fee5ff56ff
Score

1^/10
behavioral1 behavioral2 behavioral3 behavioral4
- Target
  
  legend/2
- Size
  
  119B
- MD5
  
  72918ad72cbd27a984298570d01553b8
- SHA1
  
  ef14c4e5e7ee8ddd71c0802b0176ba915dd8d3fc
- SHA256
  
  42237dd0eeacbddd1e07df21cd437cdf9c1b0282ac7b565d51589e57b39bffd1
- SHA512
  
  4980d4fe3910dd6139aad4862f0955b11c3ffd5925419f75353de1163955697cbf7b0ae277b769fcd6dd2993ea0a92ad48ea0e555cb2527a56ae710ed7fad12a
Score

1^/10
behavioral5 behavioral6 behavioral7 behavioral8
- Target
  
  legend/3
- Size
  
  196B
- MD5
  
  1af8d9443da710d3fc13f9662727a860
- SHA1
  
  fa8b8bcd69b69bff2b2120506abe74208c3eed97
- SHA256
  
  f037ef45f76cc57f0fb39807436559554e124578c862b0fc83600dcc0d793bc3
- SHA512
  
  48714b7e743461e57bd77a7bf6275c97712503f49dcf493c63d29c4ad58252a07cccc40732d767c02b07f539742773169c7c0ce8980fc24be5deedf1e6669316
Score

1^/10
behavioral10 behavioral11 behavioral12 behavioral9
- Target
  
  legend/class
- Size
  
  443KB
- MD5
  
  b51a52c9c82bb4401659b4c17c60f89f
- SHA1
  
  b45ae5d8d3069ee7f880dd461c931fa711b6ad3d
- SHA256
  
  97093a1ef729cb954b2a63d7ccc304b18d0243e2a77d87bbbb94741a0290d762
- SHA512
  
  600c956d612b9b59d9846d5e83c009b6bac646ef2ba763dd54126ddf2e1a2c86c70960dbc9f836e6cbd6c7296c3f1801151a1548af904c61375d096c23aa0f68
- SSDEEP
  
  6144:gIM21beIrQCxAeQmnT3V3xNNZkYgy2CZTLdUyh:NdbeIrT9QmbVDNZkMZLdUq
Score

1^/10
behavioral13
- Target
  
  legend/gen
- Size
  
  647B
- MD5
  
  60a3e810b4822aa8b57307b93a211b75
- SHA1
  
  a62f782ebe80686da5553abe76760985d78cba3a
- SHA256
  
  6ccfbd0bae0bb59acbf21e0f2c175d8ea0c6b55e819a5e06d9a3487c89384f70
- SHA512
  
  2a6037404f5f1dfbdce53dfcd73541fc88657cc514656bbace1661b8d3cd88be293b5f3ec5a55e74bae17a44903329cecbd9f7458e9a3d37662b83463f2b7659
Score

1^/10
behavioral14 behavioral15
- Target
  
  legend/start
- Size
  
  872B
- MD5
  
  bb0ef02b70069cbe43ad8eb6613d4743
- SHA1
  
  d317760cffc4d27bdb3668ab25614b57ad0bcbf3
- SHA256
  
  8022351f078c82e9f67e4b83a462083759642498eb4e81f66f08ad7bce531867
- SHA512
  
  6579046d4b60338acfd98224a3e80d05b74206768f20c6ab69eabf88cdaa9198b8e5de5150e20ce1ed54760493e7d863e7fb0961a100b872996b2715de7ba665
Score

7^/10

evasion
- Deletes Audit logs
  Deletes logs related to the Linux Audit framework.
  evasion
- Deletes system logs
  Deletes log file which contains global system messages. Adversaries may delete system logs to minimize their footprint.
  evasion
- Deletes log files
  Deletes log files on the system.
behavioral16 behavioral17 behavioral18 behavioral19
- Target
  
  legend/update
- Size
  
  822KB
- MD5
  
  c7d7e861826a4fa7db2b92b27c36e5e2
- SHA1
  
  95a5ff1372f352434525a416570eef4379ebac19
- SHA256
  
  8dfe94a1b02d1330886ad4458b32db3da4b872f9c2116657840de499fee5438a
- SHA512
  
  c5bf98e94fb0b87cc47b5b32834479c5f02fe75e385153429fcff6bac84e910db80463106fecd338e38174dc7272a6040db2c70cef6a8ddcdf6821c0b5a721ef
- SSDEEP
  
  24576:U8dJG9L4f0TYRsbalWjFm4z33bavoZ48ZZ2HQ:dzG9LvDbalG04rb6oZ4cQHQ
Score

1^/10
behavioral20

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20