2716bb869fb098d5a5f01ba253f90a37919d9f55a3806a1c57c5124cb5e91162

Analysis

max time kernel
7661s
max time network
136s
platform
debian-9_mips
resource
debian9-mipsbe-20221111-en
resource tags

arch:mipsimage:debian9-mipsbe-20221111-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
08-02-2023 09:54

Target

0b0fce9c160b1965ddf30f726ac58b5cb3e04f91c2634fbf9cf08c7e017bd9a0.elf
Size

132KB
MD5

4152dc14917435b8382f35f6e236ad49
SHA1

8f4f95104e161cbf019c7158e5b32ec11813e35f
SHA256

0b0fce9c160b1965ddf30f726ac58b5cb3e04f91c2634fbf9cf08c7e017bd9a0
SHA512

18c2275e20b196bbf3267f9883cafabdaca96b8b80ac9d814f438bce64b4953cd121e17cb74ffe60710568d37b9368945a5eed1a8e03504a0e8deb2b16c75c52
SSDEEP

3072:JTcqSmxQXRB+2YK9Z9zINu5Xt3QjDA6FCtBLvC9UBY9nHVhmvjeq+TstG2j:ulLC0YZVhmvjeq+TstG2j

Score

7^/10

Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.

System Network Configuration Discovery
T1016

Processes:

0b0fce9c160b1965ddf30f726ac58b5cb3e04f91c2634fbf9cf08c7e017bd9a0.elf

description ioc process

/proc/net/route /proc/net/route 0b0fce9c160b1965ddf30f726ac58b5cb3e04f91c2634fbf9cf08c7e017bd9a0.elf
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.

System Network Configuration Discovery
T1016

Processes:

0b0fce9c160b1965ddf30f726ac58b5cb3e04f91c2634fbf9cf08c7e017bd9a0.elf

description ioc process

/proc/net/route /proc/net/route 0b0fce9c160b1965ddf30f726ac58b5cb3e04f91c2634fbf9cf08c7e017bd9a0.elf

description	ioc	process
/proc/net/route	/proc/net/route	0b0fce9c160b1965ddf30f726ac58b5cb3e04f91c2634fbf9cf08c7e017bd9a0.elf

description	ioc	process
/proc/net/route	/proc/net/route	0b0fce9c160b1965ddf30f726ac58b5cb3e04f91c2634fbf9cf08c7e017bd9a0.elf

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact