Overview

overview

10

Static

static

10

6236d103b1...6c19e6

debian-9-mips

7

Analysis

  • max time kernel
    30993s
  • max time network
    150s
  • platform
    linux_mips
  • resource
    debian9-mipsbe-en-20211208
  • resource tags

    arch:mipsimage:debian9-mipsbe-en-20211208kernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
  • submitted
    30-11-2022 12:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6236d103b1a250a62703c9e5a74f0fa504a2848dead1104ec94a1648486c19e6

  • Size

    123KB

  • MD5

    12970f12c5b257b053cefc044386830d

  • SHA1

    ff5b797d212d9432bdd888d35ab24de0c746d5ce

  • SHA256

    6236d103b1a250a62703c9e5a74f0fa504a2848dead1104ec94a1648486c19e6

  • SHA512

    ea54da4796fa849bc07757ed1c92a016d3652db5614871dfc3a0602530fe5197013416b62fa62835ff84c12eb6d7fbe199e62174f2b8295c05ab1a6c00a6fa7a

  • SSDEEP

    1536:M7je1TMGq+f+AQ2rK7zeXeReXe8V2rK7Ie+u60GAzQj1l72HBeoEdWfRZrmW+IFj:Ted0W0MZQHOd6RZrmW+IFB1Dt1hR/

Score
7/10

Malware Config

Signatures

  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

Processes

  • /tmp/6236d103b1a250a62703c9e5a74f0fa504a2848dead1104ec94a1648486c19e6
    /tmp/6236d103b1a250a62703c9e5a74f0fa504a2848dead1104ec94a1648486c19e6
    1⤵
    • Reads system routing table
    • Reads system network configuration
    PID:324

Network

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

2
T1016

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Replay Monitor

Loading Replay Monitor...

Downloads