Overview

overview

5

Static

static

gost-linux-armv5

debian-9-armhf

5

Analysis

  • max time kernel
    0s
  • max time network
    158s
  • platform
    linux_armhf
  • resource
    debian9-armhf-en-20211208
  • submitted
    22-07-2022 15:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    gost-linux-armv5

  • Size

    11.9MB

  • MD5

    21dbcb4a12bf268ba42a55569f872e20

  • SHA1

    bdff4af7c8d570c29ef74358f24914e1eaf3d8be

  • SHA256

    a5ab5ab2607342c3bcfce5a0cb337c18ca432516cac8ba96b7fe0e6145b6db5e

  • SHA512

    78e21dafd92805d2ea2a5d8dd0422bc73bad835ed88db643ed19fcf852c3027fd6989ffd2ceee910a91914ea89f443e0dd06daa79b34656e7965c22162f8d1f1

  • SSDEEP

    98304:/0o3jF4CMDt6kj/QxDXm5azTvrtPdwEzzY4:/0o329D5aTtPdw4

Score
5/10

Malware Config

Signatures

  • Enumerates kernel/hardware configuration 1 TTPs 1 IoCs

    Reads contents of /sys virtual filesystem to enumerate system information.

  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/gost-linux-armv5
    /tmp/gost-linux-armv5
    1⤵
    • Enumerates kernel/hardware configuration
    • Reads runtime system information
    PID:347

Network

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Replay Monitor

Loading Replay Monitor...

Downloads