General
-
Target
61e01dd195cffd031765c0cfe190a3fa90b22beb02d65eccdfd437a0fc2c341f
-
Size
10KB
-
Sample
240725-h6sqhaycpb
-
MD5
5cac755074d8fbd00506d812dcac733f
-
SHA1
27ffc00a1379c400f88f731445de3b00e385ee17
-
SHA256
61e01dd195cffd031765c0cfe190a3fa90b22beb02d65eccdfd437a0fc2c341f
-
SHA512
26fb95bbc0aab56b4ab53ced0e02f9a200ad8b4a7cde6b308c7987a5c572394ec795bceb58b489b20f5bdef6a4d2b72d6ef34b7d70b335753652149148e7ebdb
-
SSDEEP
192:BYeOGPjiSf9QJnn3qdpqySB9rGveOGPjiSknn3qFqySB9r:BYeOGPjiS1QJnn3qdpqySB9ceOGPjiTb
Static task
static1
Behavioral task
behavioral1
Sample
61e01dd195cffd031765c0cfe190a3fa90b22beb02d65eccdfd437a0fc2c341f
Resource
ubuntu1804-amd64-20240611-en
Behavioral task
behavioral2
Sample
61e01dd195cffd031765c0cfe190a3fa90b22beb02d65eccdfd437a0fc2c341f
Resource
debian9-armhf-20240611-en
Behavioral task
behavioral3
Sample
61e01dd195cffd031765c0cfe190a3fa90b22beb02d65eccdfd437a0fc2c341f
Resource
debian9-mipsbe-20240418-en
Behavioral task
behavioral4
Sample
61e01dd195cffd031765c0cfe190a3fa90b22beb02d65eccdfd437a0fc2c341f
Resource
debian9-mipsel-20240226-en
Malware Config
Targets
-
-
Target
61e01dd195cffd031765c0cfe190a3fa90b22beb02d65eccdfd437a0fc2c341f
-
Size
10KB
-
MD5
5cac755074d8fbd00506d812dcac733f
-
SHA1
27ffc00a1379c400f88f731445de3b00e385ee17
-
SHA256
61e01dd195cffd031765c0cfe190a3fa90b22beb02d65eccdfd437a0fc2c341f
-
SHA512
26fb95bbc0aab56b4ab53ced0e02f9a200ad8b4a7cde6b308c7987a5c572394ec795bceb58b489b20f5bdef6a4d2b72d6ef34b7d70b335753652149148e7ebdb
-
SSDEEP
192:BYeOGPjiSf9QJnn3qdpqySB9rGveOGPjiSknn3qFqySB9r:BYeOGPjiS1QJnn3qdpqySB9ceOGPjiTb
Score7/10-
Executes dropped EXE
-
Renames itself
-
Creates/modifies Cron job
Cron allows running tasks on a schedule, and is commonly used for malware persistence.
-
Enumerates running processes
Discovers information about currently running processes on the system
-