General

  • Target

    55a9a50643308712ee19ca5470778a6c.elf

  • Size

    101KB

  • Sample

    240331-hj7wxafd8v

  • MD5

    55a9a50643308712ee19ca5470778a6c

  • SHA1

    34d8c603565addcfc78c8f7f28e85bee6f6fdde0

  • SHA256

    9ed242bfe1eb92942a8e4689ce569d9a529079cc00ce00776d7b3c171c7b2d67

  • SHA512

    8ee4104f3113c49eebd7ce1123147f72eb0992d6b49548acadd2e084267c9c21c31097a8356a8955abff275e7c122081566733baaaf47dbaaf92e676c3f30c25

  • SSDEEP

    3072:SOGAEtZoGZKWl6u4YTnbHZbimmFVcqq0G27ZT:SqEtZ755nbHZbimmFVcqq0G27ZT

Score
10/10

Malware Config

Targets

    • Target

      55a9a50643308712ee19ca5470778a6c.elf

    • Size

      101KB

    • MD5

      55a9a50643308712ee19ca5470778a6c

    • SHA1

      34d8c603565addcfc78c8f7f28e85bee6f6fdde0

    • SHA256

      9ed242bfe1eb92942a8e4689ce569d9a529079cc00ce00776d7b3c171c7b2d67

    • SHA512

      8ee4104f3113c49eebd7ce1123147f72eb0992d6b49548acadd2e084267c9c21c31097a8356a8955abff275e7c122081566733baaaf47dbaaf92e676c3f30c25

    • SSDEEP

      3072:SOGAEtZoGZKWl6u4YTnbHZbimmFVcqq0G27ZT:SqEtZ755nbHZbimmFVcqq0G27ZT

    Score
    7/10
    • Changes its process name

    • Executes dropped EXE

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks