Extracted

• • Target

    ed5e0d6c386f7710dafc02947bf59d82.elf

  • Size

    72KB

  • MD5

    ed5e0d6c386f7710dafc02947bf59d82

  • SHA1

    e5fa0f443d0be95814c71058e8e688df158e3b6c

  • SHA256

    f8860b8c5911535e4239d750861c4487bc784c4b38b9d120254bf65be2295864

  • SHA512

    f848b1169820730672c676a36469524c31af9850d374e01143194c269f8777013c18a34127f420c7a24c8c3029e7cba9c49c3b4569cf1c763c97f257e09e7f0d

  • SSDEEP

    1536:XXnecCqpoAvpR9CWqrfp0W8a2pVnRZ3V92wiUyBTYM287OFJv3j2:+ctz13/3Ow77fS

  Score

  9^/10

  discovery

  • Creates a large amount of network flows

    This may indicate a network scan to discover remotely running services.

    discovery

  • Modifies the Watchdog daemon

    Malware like Mirai modify the Watchdog to prevent it restarting an infected system.

  • Writes file to system bin folder

  • Reads runtime system information

    Reads data from /proc virtual filesystem.

  behavioral1