9392237822e19c21243d850c6d95d2c5c2f3b4b9e524f6a47eb849d7a04da133 | Triage

Sharing

General

Target

SecuriteInfo.com.Linux.Siggen.9999.23211.19240.elf
Size

44KB
Sample

240306-pp2qeabh74
MD5

69e72d1d8b8777a970ad7d30b93b853c
SHA1

01ddd72c14f7954210625a7b1b22ce3d8b60cbae
SHA256

9392237822e19c21243d850c6d95d2c5c2f3b4b9e524f6a47eb849d7a04da133
SHA512

c100d86697dbdf6e58e49b84c651917c8ce398bde98630902b55f7c1ee829f436dcaa809ef73a1eee4d4a98c841822d95e34383c3966e966be9716658e708294
SSDEEP

768:sieV591XFwi5xz64zEqYrEnwsnJ4dDCGpz5Ui5lJdSyjaY4iIwOj7XRiM:EVki3NEb8nlGpz5U6lJdSSd83RiM

Score

7^/10

upx

Malware Config

Targets

- Target
  
  SecuriteInfo.com.Linux.Siggen.9999.23211.19240.elf
- Size
  
  44KB
- MD5
  
  69e72d1d8b8777a970ad7d30b93b853c
- SHA1
  
  01ddd72c14f7954210625a7b1b22ce3d8b60cbae
- SHA256
  
  9392237822e19c21243d850c6d95d2c5c2f3b4b9e524f6a47eb849d7a04da133
- SHA512
  
  c100d86697dbdf6e58e49b84c651917c8ce398bde98630902b55f7c1ee829f436dcaa809ef73a1eee4d4a98c841822d95e34383c3966e966be9716658e708294
- SSDEEP
  
  768:sieV591XFwi5xz64zEqYrEnwsnJ4dDCGpz5Ui5lJdSyjaY4iIwOj7XRiM:EVki3NEb8nlGpz5U6lJdSSd83RiM
Score

7^/10
- Changes its process name
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1