Overview

overview

10

Static

static

10

cbc7c7327d...a6.elf

ubuntu-24.04-amd64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cbc7c7327da32f87bc97e9a0b0e55cb72994bae712655334b25d169c21d07ea6.elf

  • Size

    129KB

  • Sample

    240702-cg8grssdjd

  • MD5

    5839e4913cb3aae94d1c3a36fe82d1bb

  • SHA1

    75b1adcc96fc4fa0931fb8c9e0025d756a3b7f9e

  • SHA256

    cbc7c7327da32f87bc97e9a0b0e55cb72994bae712655334b25d169c21d07ea6

  • SHA512

    1fc77be89da8aa81370643a1af2020a2a6e3501575343ab86901745ac8dc97bd7ec4c0a7ca676fd6aa26519c38e17aefb3c4921e1d20f4eb27c50381d9175947

  • SSDEEP

    3072:7GGZgLD3hhI2fKGHOZOSp6iKxKk2mr1zwTdWNn:ODBvcMK3mr1zwTdWNn

Score
10/10
gafgytlinux

Malware Config

Targets

    • Target

      cbc7c7327da32f87bc97e9a0b0e55cb72994bae712655334b25d169c21d07ea6.elf

    • Size

      129KB

    • MD5

      5839e4913cb3aae94d1c3a36fe82d1bb

    • SHA1

      75b1adcc96fc4fa0931fb8c9e0025d756a3b7f9e

    • SHA256

      cbc7c7327da32f87bc97e9a0b0e55cb72994bae712655334b25d169c21d07ea6

    • SHA512

      1fc77be89da8aa81370643a1af2020a2a6e3501575343ab86901745ac8dc97bd7ec4c0a7ca676fd6aa26519c38e17aefb3c4921e1d20f4eb27c50381d9175947

    • SSDEEP

      3072:7GGZgLD3hhI2fKGHOZOSp6iKxKk2mr1zwTdWNn:ODBvcMK3mr1zwTdWNn

    Score
    7/10

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

    behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

1
T1562

Credential Access

Discovery

System Network Configuration Discovery

2
T1016

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks