73d33e606d31c2f1586f739395e9912ff865771a57e5fbf35f88b935bd26f327

Analysis

max time kernel
0s
max time network
124s
platform
debian-9_mips
resource
debian9-mipsbe-20221111-en
resource tags

arch:mipsimage:debian9-mipsbe-20221111-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
06-02-2023 06:57

Target

25c6130046b2e6f2ab4b6e19a2a0a944.elf
Size

123KB
MD5

25c6130046b2e6f2ab4b6e19a2a0a944
SHA1

05d40c11d1a543a0b7aa098e9be84507166a546b
SHA256

73d33e606d31c2f1586f739395e9912ff865771a57e5fbf35f88b935bd26f327
SHA512

72c9619b461b9e65d5d80da9763a07b3eaf72f7c39155fc441f80315a8f8050f53519464e4c96b17c1e54fe3add2d211ac86ed6c45d4707efe5cd018c49242ca
SSDEEP

1536:M7je1TMGq+f+AQ2rK7zeXeReXe8V2rK7Ie+u60GAzQj1l72HBecEdaAW/GrmW+IR:Ted0W0MZQHKdaAW/GrmW+IFB1Dt1hR/

Score

7^/10

Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.

System Network Configuration Discovery
T1016

Processes:

25c6130046b2e6f2ab4b6e19a2a0a944.elf

description ioc process

/proc/net/route /proc/net/route 25c6130046b2e6f2ab4b6e19a2a0a944.elf
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.

System Network Configuration Discovery
T1016

Processes:

25c6130046b2e6f2ab4b6e19a2a0a944.elf

description ioc process

/proc/net/route /proc/net/route 25c6130046b2e6f2ab4b6e19a2a0a944.elf

description	ioc	process
/proc/net/route	/proc/net/route	25c6130046b2e6f2ab4b6e19a2a0a944.elf

description	ioc	process
/proc/net/route	/proc/net/route	25c6130046b2e6f2ab4b6e19a2a0a944.elf

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact