60de8dafb15d559e96fec61784220fbe0410159dd8ec4763f4c81415e7d3e03b | Triage

Submit
Reports

Overview

overview

9

Static

static

677ebfbd1d...107e11

debian-9-mips

9

Analysis

max time kernel
21870s
max time network
151s
platform
linux_mips
resource
debian9-mipsbe-en-20211208
resource tags

arch:mipsimage:debian9-mipsbe-en-20211208kernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
18-08-2022 20:13

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

677ebfbd1d4b802e7c72211390107e11

Resource

debian9-mipsbe-en-20211208

debian-9-mips

3 signatures

150 seconds

Report Analysis Logs

General

Target

677ebfbd1d4b802e7c72211390107e11
Size

19KB
MD5

677ebfbd1d4b802e7c72211390107e11
SHA1

f86cfdabf4d40414ff96a328da8962f7f392082e
SHA256

60de8dafb15d559e96fec61784220fbe0410159dd8ec4763f4c81415e7d3e03b
SHA512

d07fa8c27a00bd6cc731f8996f598922372fd60b46840c8b77521a169e2d232d80f5544601a6b7ef94b49379088de7852e685f1db09ac6373dae4b5b2b4a1482

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (86245) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Scanning
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Scanning
T1046
Modifies the Watchdog daemon 1 TTPs
Malware like Mirai modify the Watchdog to prevent it restarting an infected system.

Impair Defenses
T1562

Processes

/tmp/677ebfbd1d4b802e7c72211390107e11
/tmp/677ebfbd1d4b802e7c72211390107e11
1⤵
PID:325

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy