General

  • Target

    adc0db62f6058f07dba931751b7be23b016ea46f2db2d4ca2a20b8f45e42d3d0.elf

  • Size

    1.1MB

  • Sample

    241207-dnwl8asqcv

  • MD5

    95484f67580be2296ad1a088a2153318

  • SHA1

    ec8a0b2327102a3d1f4c40f121925efb73a7b0fc

  • SHA256

    adc0db62f6058f07dba931751b7be23b016ea46f2db2d4ca2a20b8f45e42d3d0

  • SHA512

    8ae7c671ed451b3f55dd8821c2091f078624ab9b8d2a7ac08c13543a579d7b83d9252d782d2f773ed8e0a9184b35eb656e374966d07b97a695c2547a5c16eb74

  • SSDEEP

    24576:48hy2T7b8mkl/Ebf+ErLaH6HrCSLcjfO/lPvqtiLL:48hy4Rkl/Eb/L/3LcjCPvqtiLL

Malware Config

Targets

    • Target

      adc0db62f6058f07dba931751b7be23b016ea46f2db2d4ca2a20b8f45e42d3d0.elf

    • Size

      1.1MB

    • MD5

      95484f67580be2296ad1a088a2153318

    • SHA1

      ec8a0b2327102a3d1f4c40f121925efb73a7b0fc

    • SHA256

      adc0db62f6058f07dba931751b7be23b016ea46f2db2d4ca2a20b8f45e42d3d0

    • SHA512

      8ae7c671ed451b3f55dd8821c2091f078624ab9b8d2a7ac08c13543a579d7b83d9252d782d2f773ed8e0a9184b35eb656e374966d07b97a695c2547a5c16eb74

    • SSDEEP

      24576:48hy2T7b8mkl/Ebf+ErLaH6HrCSLcjfO/lPvqtiLL:48hy4Rkl/Eb/L/3LcjCPvqtiLL

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Modifies rc script

      Adding/modifying system rc scripts is a common persistence mechanism.

MITRE ATT&CK Enterprise v15

Tasks