General
-
Target
na.elf
-
Size
54KB
-
Sample
241015-gzc6sstanl
-
MD5
6bce0ad69a96bed1ddb8386a3da9c8ee
-
SHA1
6dec968b7c7c8c248f6bb39891898d5b202b9804
-
SHA256
6188a965431a9892ff3144bd842341c13573619797d1017dec34f6c65721d520
-
SHA512
99aa0b9395ff9edd92c60bf26821e0146d53ad5b5a0eaba1b462cb6d7ea93eb88825feb044463ce39e4d54ab8c912154bd5c7ee23292d23f02565556fd085ba0
-
SSDEEP
768:6DAws5E27Uxl7HMPwSPlktHBrh9etiT32l5T5wGkWGrBmpq0+jM2NwBsnITM4U:OAe4UCP8XeD52f31++ZD
Malware Config
Targets
-
-
Target
na.elf
-
Size
54KB
-
MD5
6bce0ad69a96bed1ddb8386a3da9c8ee
-
SHA1
6dec968b7c7c8c248f6bb39891898d5b202b9804
-
SHA256
6188a965431a9892ff3144bd842341c13573619797d1017dec34f6c65721d520
-
SHA512
99aa0b9395ff9edd92c60bf26821e0146d53ad5b5a0eaba1b462cb6d7ea93eb88825feb044463ce39e4d54ab8c912154bd5c7ee23292d23f02565556fd085ba0
-
SSDEEP
768:6DAws5E27Uxl7HMPwSPlktHBrh9etiT32l5T5wGkWGrBmpq0+jM2NwBsnITM4U:OAe4UCP8XeD52f31++ZD
Score7/10-
Deletes system logs
Deletes log file which contains global system messages. Adversaries may delete system logs to minimize their footprint.
-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Renames itself
-
Deletes log files
Deletes log files on the system.
-
Reads process memory
Read the memory of a process through the /proc virtual filesystem. This can be used to steal credentials.
-