Overview

overview

10

Static

static

10

4b76e65df5...06568c

debian-9-armhf

7

Analysis

  • max time kernel
    30409s
  • max time network
    160s
  • platform
    linux_armhf
  • resource
    debian9-armhf-en-20211208
  • resource tags

    arch:armhfimage:debian9-armhf-en-20211208kernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    25/11/2022, 09:41

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    4b76e65df5336272ecc8d46dbb8b9f1f2389a8e7f70760c073c871d6c006568c

  • Size

    113KB

  • MD5

    a610025c0d9824c7b84d553152db9a19

  • SHA1

    9bcb4e7bbd0cb4abfc19058a9c2710fb89276df4

  • SHA256

    4b76e65df5336272ecc8d46dbb8b9f1f2389a8e7f70760c073c871d6c006568c

  • SHA512

    e7d2b1fba189cabdb77237a3fe3b25f6f1ca0526fa287148fe22d9d4ae6e38ae016a6befb8c66e4bdad68fb4c7179f5bde8518bafed7826311db4d229bf3929e

  • SSDEEP

    3072:YFxQZN5JNLVsaq13JPyH6cQ4NEbuompQOntXIva:YFxSN5hsaYPyH6YompQOnxIva

Score
7/10

Malware Config

Signatures

  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

Processes

  • /tmp/4b76e65df5336272ecc8d46dbb8b9f1f2389a8e7f70760c073c871d6c006568c
    /tmp/4b76e65df5336272ecc8d46dbb8b9f1f2389a8e7f70760c073c871d6c006568c
    1⤵
    • Reads system routing table
    • Reads system network configuration
    PID:363

Network

        MITRE ATT&CK Enterprise v6

        Replay Monitor

        Loading Replay Monitor...

        Downloads