General
-
Target
na.elf
-
Size
418KB
-
Sample
250222-zg5gfayqdn
-
MD5
62536120aa19a254b5151f85d60b523b
-
SHA1
12a1665947546a89e247ebf175c2a7964da191b3
-
SHA256
0303a693fc57d05ed98a3a19f70ba8d9a9fcf355977868af4bb6b3978310ef8c
-
SHA512
fcd1ba37303a43e9b468722f6148ab3be76c65f99bcd52538d5a09809383c5685cd294e91526e1239976ea975e0ac4fdbc99e40ea057e5a764c04fe0cb24ac07
-
SSDEEP
12288:6QIkwT+V+46MTuxN+qpMBUH5kAAxwWVtBeSB:W4/y+qaBUZJAdVt1
Behavioral task
behavioral1
Sample
na.elf
Resource
ubuntu2204-amd64-20240729-en
Malware Config
Targets
-
-
Target
na.elf
-
Size
418KB
-
MD5
62536120aa19a254b5151f85d60b523b
-
SHA1
12a1665947546a89e247ebf175c2a7964da191b3
-
SHA256
0303a693fc57d05ed98a3a19f70ba8d9a9fcf355977868af4bb6b3978310ef8c
-
SHA512
fcd1ba37303a43e9b468722f6148ab3be76c65f99bcd52538d5a09809383c5685cd294e91526e1239976ea975e0ac4fdbc99e40ea057e5a764c04fe0cb24ac07
-
SSDEEP
12288:6QIkwT+V+46MTuxN+qpMBUH5kAAxwWVtBeSB:W4/y+qaBUZJAdVt1
-
Prometei_elf family
-
Deletes itself
-
Modifies hosts file
Adds to hosts file used for mapping hosts to IP addresses.
-
Enumerates running processes
Discovers information about currently running processes on the system
-
Modifies systemd
Adds/ modifies systemd service files. Likely to achieve persistence.
-
Write file to user bin folder
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1XDG Autostart Entries
1Create or Modify System Process
1Systemd Service
1