General

  • Target

    93baaaabfc573289b7cea910738e996f36b616b93a40a2ecfb84d14d1a2e5da2.elf

  • Size

    155KB

  • Sample

    240402-bmyzvacd6v

  • MD5

    66617f9932e2e20f48493f12c80fceb7

  • SHA1

    278410f9e356ad62dc2d66c426d2b60545918923

  • SHA256

    93baaaabfc573289b7cea910738e996f36b616b93a40a2ecfb84d14d1a2e5da2

  • SHA512

    22fa7850204dc9296eaba8312cebe36facc2cdb999590f0fca2cd8bbeb09cb049ec792e2439bd6b2fcc54e6a9bbab0f2199c4069705a315630228ca0855d2c91

  • SSDEEP

    3072:1LNqrhHZ0P6bRFBQivfRjHkLwmrThPaLEne7rNb:1Lsrr0PeRTJBgLwmrThPaLEne7rNb

Score
10/10

Malware Config

Targets

    • Target

      93baaaabfc573289b7cea910738e996f36b616b93a40a2ecfb84d14d1a2e5da2.elf

    • Size

      155KB

    • MD5

      66617f9932e2e20f48493f12c80fceb7

    • SHA1

      278410f9e356ad62dc2d66c426d2b60545918923

    • SHA256

      93baaaabfc573289b7cea910738e996f36b616b93a40a2ecfb84d14d1a2e5da2

    • SHA512

      22fa7850204dc9296eaba8312cebe36facc2cdb999590f0fca2cd8bbeb09cb049ec792e2439bd6b2fcc54e6a9bbab0f2199c4069705a315630228ca0855d2c91

    • SSDEEP

      3072:1LNqrhHZ0P6bRFBQivfRjHkLwmrThPaLEne7rNb:1Lsrr0PeRTJBgLwmrThPaLEne7rNb

    Score
    7/10
    • Changes its process name

    • Executes dropped EXE

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks