General
-
Target
09c2bd8320cca2b2a34e269737bd01afbb3919497f061772be26f126476823a2.elf
-
Size
418KB
-
Sample
250223-cgp1esvmcl
-
MD5
a5e6ed625423bb60cad8914acf021fb9
-
SHA1
ce48533b2dbc7a6b5dfe1e34782aeab681628446
-
SHA256
09c2bd8320cca2b2a34e269737bd01afbb3919497f061772be26f126476823a2
-
SHA512
31e853bb4156e127d59cb08a44544079bd6d79d0581321c060f558a586143ac547662e2b05fffb34be1dbc46b7bb12b2c5a70aeed0e264d71a1e17779ac1866f
-
SSDEEP
12288:6QIkwT+V+46MTuxN+qpMBUH5kAAxwWVtBeSf:W4/y+qaBUZJAdVtj
Behavioral task
behavioral1
Sample
09c2bd8320cca2b2a34e269737bd01afbb3919497f061772be26f126476823a2.elf
Resource
ubuntu2204-amd64-20240611-en
Malware Config
Targets
-
-
Target
09c2bd8320cca2b2a34e269737bd01afbb3919497f061772be26f126476823a2.elf
-
Size
418KB
-
MD5
a5e6ed625423bb60cad8914acf021fb9
-
SHA1
ce48533b2dbc7a6b5dfe1e34782aeab681628446
-
SHA256
09c2bd8320cca2b2a34e269737bd01afbb3919497f061772be26f126476823a2
-
SHA512
31e853bb4156e127d59cb08a44544079bd6d79d0581321c060f558a586143ac547662e2b05fffb34be1dbc46b7bb12b2c5a70aeed0e264d71a1e17779ac1866f
-
SSDEEP
12288:6QIkwT+V+46MTuxN+qpMBUH5kAAxwWVtBeSf:W4/y+qaBUZJAdVtj
-
Prometei_elf family
-
Deletes itself
-
Modifies hosts file
Adds to hosts file used for mapping hosts to IP addresses.
-
Enumerates running processes
Discovers information about currently running processes on the system
-
Modifies systemd
Adds/ modifies systemd service files. Likely to achieve persistence.
-
Write file to user bin folder
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1XDG Autostart Entries
1Create or Modify System Process
1Systemd Service
1