fba8d983975d0ba7deae9d5ddcdee83294aadb3cfcb385fc9e460052d0b6024c

Analysis

max time kernel
8229s
max time network
149s
platform
debian-9_mipsel
resource
debian9-mipsel-20221111-en
resource tags

arch:mipselimage:debian9-mipsel-20221111-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
submitted
14-02-2023 23:50

Target

fae8df0e28fb5507bd91a1c59e4b1d22.elf
Size

143KB
MD5

fae8df0e28fb5507bd91a1c59e4b1d22
SHA1

ef60c6ff9e16a3d5530fa3a4e5f252c8c01f7c43
SHA256

fba8d983975d0ba7deae9d5ddcdee83294aadb3cfcb385fc9e460052d0b6024c
SHA512

b095344ab0127cc70e5981d57c56b321dcef80a3aa7f2cc4cad93937af70f82e96d13bdbda966f5521be845000541626dbad1986f0884e7f927e948887ab4aeb
SSDEEP

1536:P0/eTNRsHrRDjMcZkHNc1PYeH/Qs1PFhWW+sPFUmkV0ZF01TDtM2ke:P0Hjn7bH/bFhWkFUmkmZF01TpM2ke

Score

7^/10

Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.

System Network Configuration Discovery
T1016

Processes:

fae8df0e28fb5507bd91a1c59e4b1d22.elf

description ioc process

/proc/net/route /proc/net/route fae8df0e28fb5507bd91a1c59e4b1d22.elf
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.

System Network Configuration Discovery
T1016

Processes:

fae8df0e28fb5507bd91a1c59e4b1d22.elf

description ioc process

/proc/net/route /proc/net/route fae8df0e28fb5507bd91a1c59e4b1d22.elf

description	ioc	process
/proc/net/route	/proc/net/route	fae8df0e28fb5507bd91a1c59e4b1d22.elf

description	ioc	process
/proc/net/route	/proc/net/route	fae8df0e28fb5507bd91a1c59e4b1d22.elf

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact