General

  • Target

    e47c0cc3b00de906596cf4e63820d391d4e0e2ccc78a2c4f60cfe8d1991a345d.elf

  • Size

    155KB

  • Sample

    240402-btybwscf8s

  • MD5

    6153fdb5e5899070229f1c544ab3d291

  • SHA1

    cc61abc7d93b729f284efd418dfc815deaef2ba9

  • SHA256

    e47c0cc3b00de906596cf4e63820d391d4e0e2ccc78a2c4f60cfe8d1991a345d

  • SHA512

    cf66e060c87cf967af1f134a20668b3f9aabf2b27f3551c33c529e93e9815dfdbd86eef2435a5c6251a30daea1ecae45f19cd11616729b5880ec65e174971141

  • SSDEEP

    3072:B7esBFP23rWfOB7ZOOyGgWKmrThPaLEne7rNb:1euCloGgrmrThPaLEne7rNb

Score
10/10

Malware Config

Targets

    • Target

      e47c0cc3b00de906596cf4e63820d391d4e0e2ccc78a2c4f60cfe8d1991a345d.elf

    • Size

      155KB

    • MD5

      6153fdb5e5899070229f1c544ab3d291

    • SHA1

      cc61abc7d93b729f284efd418dfc815deaef2ba9

    • SHA256

      e47c0cc3b00de906596cf4e63820d391d4e0e2ccc78a2c4f60cfe8d1991a345d

    • SHA512

      cf66e060c87cf967af1f134a20668b3f9aabf2b27f3551c33c529e93e9815dfdbd86eef2435a5c6251a30daea1ecae45f19cd11616729b5880ec65e174971141

    • SSDEEP

      3072:B7esBFP23rWfOB7ZOOyGgWKmrThPaLEne7rNb:1euCloGgrmrThPaLEne7rNb

    Score
    7/10
    • Changes its process name

    • Executes dropped EXE

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks