General

  • Target

    a508368a916bcc275163c40126bfdcaa26d5dc3294257356f16799a79ed7eebf.elf

  • Size

    114KB

  • Sample

    240402-bnr8pacd71

  • MD5

    535e42bda70b4c58e32e5f244ee715f1

  • SHA1

    70150ad2d0028bf5fbac7781aa18665102b6070e

  • SHA256

    a508368a916bcc275163c40126bfdcaa26d5dc3294257356f16799a79ed7eebf

  • SHA512

    1d907628b4333ca1e653fc7e73e6ecbb5cb2307bb060169b4fcee62e9e6d5c171101e93d3afeea9deafd3bea1820c3b3d1c78317d7e0acb49b415c4a5b2e62cf

  • SSDEEP

    3072:uirMUYZMo/QJLRZDsqtxqLX5I/uJioud2yd1m7FnVqfJXoebNb:SKo/O8qtUbKXbm7FnVqfJXoebNb

Score
10/10

Malware Config

Targets

    • Target

      a508368a916bcc275163c40126bfdcaa26d5dc3294257356f16799a79ed7eebf.elf

    • Size

      114KB

    • MD5

      535e42bda70b4c58e32e5f244ee715f1

    • SHA1

      70150ad2d0028bf5fbac7781aa18665102b6070e

    • SHA256

      a508368a916bcc275163c40126bfdcaa26d5dc3294257356f16799a79ed7eebf

    • SHA512

      1d907628b4333ca1e653fc7e73e6ecbb5cb2307bb060169b4fcee62e9e6d5c171101e93d3afeea9deafd3bea1820c3b3d1c78317d7e0acb49b415c4a5b2e62cf

    • SSDEEP

      3072:uirMUYZMo/QJLRZDsqtxqLX5I/uJioud2yd1m7FnVqfJXoebNb:SKo/O8qtUbKXbm7FnVqfJXoebNb

    Score
    7/10
    • Changes its process name

    • Executes dropped EXE

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks