General
-
Target
na.elf
-
Size
425KB
-
Sample
250331-swcxeasxes
-
MD5
f7c7b681182706e645fd8b20fe936f28
-
SHA1
7a8c0fc1281e3657c1ea59307d1b967d6b7f9701
-
SHA256
600e31925afe5725c600f669c8bf51edd6c5abbbe9ecfb99eb04bcbfb89cf6c9
-
SHA512
b3f2ec66175274ac7a42e9ed8eea8c5c592cba4e2f73eabad9b235122fb4f6b3b6e68eb207c9bafbfb3b6ddc6ae099c13f93ed5b9731291231cef1e039ead379
-
SSDEEP
6144:63fxS1fHETSACF2Gzm5DVvSHrKKRH4SCra+HWMiFbcAOXmb4Dsi6wwcitgV:25WOSACZSV6eKRH5EPiamb4DsDwwcF
Behavioral task
behavioral1
Sample
na.elf
Resource
ubuntu2404-amd64-20250307-en
Malware Config
Targets
-
-
Target
na.elf
-
Size
425KB
-
MD5
f7c7b681182706e645fd8b20fe936f28
-
SHA1
7a8c0fc1281e3657c1ea59307d1b967d6b7f9701
-
SHA256
600e31925afe5725c600f669c8bf51edd6c5abbbe9ecfb99eb04bcbfb89cf6c9
-
SHA512
b3f2ec66175274ac7a42e9ed8eea8c5c592cba4e2f73eabad9b235122fb4f6b3b6e68eb207c9bafbfb3b6ddc6ae099c13f93ed5b9731291231cef1e039ead379
-
SSDEEP
6144:63fxS1fHETSACF2Gzm5DVvSHrKKRH4SCra+HWMiFbcAOXmb4Dsi6wwcitgV:25WOSACZSV6eKRH5EPiamb4DsDwwcF
-
Prometei_elf family
-
Deletes itself
-
Modifies hosts file
Adds to hosts file used for mapping hosts to IP addresses.
-
Enumerates running processes
Discovers information about currently running processes on the system
-
Modifies systemd
Adds/ modifies systemd service files. Likely to achieve persistence.
-
Write file to user bin folder
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1XDG Autostart Entries
1Create or Modify System Process
1Systemd Service
1