General

  • Target

    linux_mipsel.elf

  • Size

    2.2MB

  • Sample

    250412-w9ejyazj14

  • MD5

    ef972be05ac48b0f309c2d22cb49fe14

  • SHA1

    9dd533098e4e8bbfd211d18cdb8c4de0a0f1a752

  • SHA256

    09b94b56a9442e8198444d3b2fefbb930fb1861fd0be101ea89036448ce1549e

  • SHA512

    d75f5e9ea8f4ee1de5e4a50bfa55405c71d00e7555013a3960d22a3161942d10a746a54a78910666c40bf6e99cd528cce56107ac5b4f6ca9edb21273e489c6d7

  • SSDEEP

    24576:kO+PuaNFZRml7/I1n0FOakVXFYd+lCQYWz1v:9eN2xd+lCWz1

Malware Config

Targets

    • Target

      linux_mipsel.elf

    • Size

      2.2MB

    • MD5

      ef972be05ac48b0f309c2d22cb49fe14

    • SHA1

      9dd533098e4e8bbfd211d18cdb8c4de0a0f1a752

    • SHA256

      09b94b56a9442e8198444d3b2fefbb930fb1861fd0be101ea89036448ce1549e

    • SHA512

      d75f5e9ea8f4ee1de5e4a50bfa55405c71d00e7555013a3960d22a3161942d10a746a54a78910666c40bf6e99cd528cce56107ac5b4f6ca9edb21273e489c6d7

    • SSDEEP

      24576:kO+PuaNFZRml7/I1n0FOakVXFYd+lCQYWz1v:9eN2xd+lCWz1

    • Executes dropped EXE

    • Disables SELinux

      Disables SELinux security module.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Modifies systemd

      Adds/ modifies systemd service files. Likely to achieve persistence.

MITRE ATT&CK Enterprise v16

Tasks