2d7adb303b8e5ab9adb439d89a2164b9a79b846744501473b820f8e9df8f9541 | Triage

Submit
Reports

Overview

overview

7

Static

static

1

bcf5356b2b...23da3d

ubuntu-18.04-amd64

7

Sharing

General

Target

bcf5356b2b973bd8a6aba3763623da3d
Size

38KB
Sample

240309-2bgvasda5t
MD5

bcf5356b2b973bd8a6aba3763623da3d
SHA1

586db66ea891285083450fb3b6f3ba8b46bbcb44
SHA256

2d7adb303b8e5ab9adb439d89a2164b9a79b846744501473b820f8e9df8f9541
SHA512

2f185a86073b55fd68a5dcd2cff1b4f5b2df29176dca77e5453cbfdcd8deb57364af8718e5a98241245bd61d51885188ad397acdb845557625d2c9d821036080
SSDEEP

768:CYT62wo1QbQhpOQFU3BrN6v2NxrTpUxgt12P2v9sP3:jIbQf7G3VNx5Lto+Fu3

Score

7^/10

linux

Static task

static1

Behavioral task

behavioral1

Sample

bcf5356b2b973bd8a6aba3763623da3d

Resource

ubuntu1804-amd64-20240226-en

ubuntu-18.04-amd64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  bcf5356b2b973bd8a6aba3763623da3d
- Size
  
  38KB
- MD5
  
  bcf5356b2b973bd8a6aba3763623da3d
- SHA1
  
  586db66ea891285083450fb3b6f3ba8b46bbcb44
- SHA256
  
  2d7adb303b8e5ab9adb439d89a2164b9a79b846744501473b820f8e9df8f9541
- SHA512
  
  2f185a86073b55fd68a5dcd2cff1b4f5b2df29176dca77e5453cbfdcd8deb57364af8718e5a98241245bd61d51885188ad397acdb845557625d2c9d821036080
- SSDEEP
  
  768:CYT62wo1QbQhpOQFU3BrN6v2NxrTpUxgt12P2v9sP3:jIbQf7G3VNx5Lto+Fu3
Score

7^/10
- Changes its process name
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
- Reads system routing table
  Gets active network interfaces from /proc virtual filesystem.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy