General
-
Target
0dfe3115ffdaad8de20a541e183e8b88182db9750cfb25347e97e89d71a6c7a9.elf
-
Size
418KB
-
Sample
250223-chcrgswms9
-
MD5
c2dc7137a1891ff662733e8e98347e88
-
SHA1
1680a3e66ba28e97ca025ac03b286116a0ce43ba
-
SHA256
0dfe3115ffdaad8de20a541e183e8b88182db9750cfb25347e97e89d71a6c7a9
-
SHA512
b5d21ff300b7a2acf402c1e1d9a0d1d80262ff6b4129067e06e96b065163302e7c9ac96190b3d7ea04837360e8866331808dc310166a55975c6ebd3c1ea24870
-
SSDEEP
12288:6QIkwT+V+46MTuxN+qpMBUH5kAAxwWVtBeS7:W4/y+qaBUZJAdVt3
Behavioral task
behavioral1
Sample
0dfe3115ffdaad8de20a541e183e8b88182db9750cfb25347e97e89d71a6c7a9.elf
Resource
ubuntu2204-amd64-20240522.1-en
Malware Config
Targets
-
-
Target
0dfe3115ffdaad8de20a541e183e8b88182db9750cfb25347e97e89d71a6c7a9.elf
-
Size
418KB
-
MD5
c2dc7137a1891ff662733e8e98347e88
-
SHA1
1680a3e66ba28e97ca025ac03b286116a0ce43ba
-
SHA256
0dfe3115ffdaad8de20a541e183e8b88182db9750cfb25347e97e89d71a6c7a9
-
SHA512
b5d21ff300b7a2acf402c1e1d9a0d1d80262ff6b4129067e06e96b065163302e7c9ac96190b3d7ea04837360e8866331808dc310166a55975c6ebd3c1ea24870
-
SSDEEP
12288:6QIkwT+V+46MTuxN+qpMBUH5kAAxwWVtBeS7:W4/y+qaBUZJAdVt3
-
Prometei_elf family
-
Deletes itself
-
Modifies hosts file
Adds to hosts file used for mapping hosts to IP addresses.
-
Enumerates running processes
Discovers information about currently running processes on the system
-
Modifies systemd
Adds/ modifies systemd service files. Likely to achieve persistence.
-
Write file to user bin folder
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1XDG Autostart Entries
1Create or Modify System Process
1Systemd Service
1