5878ec5f175fef0364727673993af5db4ac6ad577f053cf6294caba91c7c65e7

Analysis

max time kernel
0s
max time network
151s
platform
linux_mips
resource
debian9-mipsbe-en-20211208
submitted
24-06-2022 22:25

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

5878ec5f175fef0364727673993af5db4ac6ad577f053cf6294caba91c7c65e7
Size

149KB
MD5

5d6b341d03fd3dec4d2ee9282dbe78f2
SHA1

bed032acebdf5cf9388594e8d84f93e91186dd59
SHA256

5878ec5f175fef0364727673993af5db4ac6ad577f053cf6294caba91c7c65e7
SHA512

c5845ce2ab8dffbafe308c6228566d508c53b5990968110d43ac31841a6b0642df2c326a53cf21f50ecbd52ed105495a6bb12890b12a49ffccc9a7c4770d2605

Score

7^/10

persistence

Malware Config

Signatures

Modifies rc script 1 TTPs 1 IoCs

Adding/modifying system rc scripts is a common persistence mechanism.

persistence

Boot or Logon Autostart Execution

T1547

description	ioc	Process
/etc/rc.d/rc.local	/etc/rc.d/rc.local	5878ec5f175fef0364727673993af5db4ac6ad577f053cf6294caba91c7c65e7

Reads system routing table 1 TTPs 1 IoCs

Gets active network interfaces from /proc virtual filesystem.

System Network Configuration Discovery

T1016

description	ioc
/proc/net/route	/proc/net/route

Reads system network configuration 1 TTPs 1 IoCs

Uses contents of /proc filesystem to enumerate network settings.

System Network Configuration Discovery

T1016

description	ioc
/proc/net/route	/proc/net/route

./5878ec5f175fef0364727673993af5db4ac6ad577f053cf6294caba91c7c65e7
./5878ec5f175fef0364727673993af5db4ac6ad577f053cf6294caba91c7c65e7
1⤵
- Modifies rc script
PID:325

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

T1547

Privilege Escalation

Boot or Logon Autostart Execution

T1547

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1016

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads