General

  • Target

    377c3c3679e44acbc13388ca7ec69f2346b321aa42110fc6ee44a44c54d67105.elf

  • Size

    101KB

  • Sample

    240402-bfx4zacf62

  • MD5

    ba8c3d833bf5596f87b29eaf2a2c8147

  • SHA1

    8b402e35103a9d0b88122790849476afa96b58d3

  • SHA256

    377c3c3679e44acbc13388ca7ec69f2346b321aa42110fc6ee44a44c54d67105

  • SHA512

    bbf30bbc1adb96e702921a2d0da940a5c269410d03e6d747dac5bbd61974777d0ba69c3a72114bfd8106d2504520009cea4b58f72cb52a3d222ccca5679b67d8

  • SSDEEP

    3072:SOGAEtZoGZKWl6u4YTnbHgbimmFVcqq0G27ZT:SqEtZ755nbHgbimmFVcqq0G27ZT

Score
10/10

Malware Config

Targets

    • Target

      377c3c3679e44acbc13388ca7ec69f2346b321aa42110fc6ee44a44c54d67105.elf

    • Size

      101KB

    • MD5

      ba8c3d833bf5596f87b29eaf2a2c8147

    • SHA1

      8b402e35103a9d0b88122790849476afa96b58d3

    • SHA256

      377c3c3679e44acbc13388ca7ec69f2346b321aa42110fc6ee44a44c54d67105

    • SHA512

      bbf30bbc1adb96e702921a2d0da940a5c269410d03e6d747dac5bbd61974777d0ba69c3a72114bfd8106d2504520009cea4b58f72cb52a3d222ccca5679b67d8

    • SSDEEP

      3072:SOGAEtZoGZKWl6u4YTnbHgbimmFVcqq0G27ZT:SqEtZ755nbHgbimmFVcqq0G27ZT

    Score
    7/10
    • Changes its process name

    • Executes dropped EXE

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks