Overview

overview

8

Static

static

9c3fb77179...02.elf

debian-9-mipsel

8

Analysis

  • max time kernel
    24754s
  • max time network
    121s
  • platform
    linux_mipsel
  • resource
    debian9-mipsel-en-20211208
  • resource tags

    arch:mipselimage:debian9-mipsel-en-20211208kernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
  • submitted
    21/09/2022, 05:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9c3fb771790ac3dd72084f49a55bff02.elf

  • Size

    35KB

  • MD5

    9c3fb771790ac3dd72084f49a55bff02

  • SHA1

    9f3ca27924c03c561bc213e86959a2586754be29

  • SHA256

    0c68fd2f7dec6886ec93b2d43b064d911e2d7bf3b025b78ee16b9de8b7ec431c

  • SHA512

    866cf25f942dc0d1ac5da21bca105d189b1bd8c5c0a2fd76e88b51f6fe78b037d867e7384c95ddc24379b3ef8b2b9df67569a3ccc10b9cfb585ee927a6677e48

  • SSDEEP

    768:LGhmgwB3E+OjV8SWHa7gWyEcbej973/HfRjDsx9tzEWRZ:LGwgvRLWAGEseh3/HZDcR

Score
8/10

Malware Config

Signatures

  • Modifies hosts file 1 IoCs

    Adds to hosts file used for mapping hosts to IP addresses.

  • Writes DNS configuration 1 TTPs 1 IoCs

    Writes data to DNS resolver config file.

  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/9c3fb771790ac3dd72084f49a55bff02.elf
    /tmp/9c3fb771790ac3dd72084f49a55bff02.elf
    1⤵
    • Reads system routing table
    • Reads system network configuration
    • Reads runtime system information
    PID:325

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads