24b3494f2822f38f51c354f16520d75f85cedbfacd46b31fb5069466c79c24a9

Analysis

max time kernel
37436s
max time network
148s
platform
linux_mips
resource
debian9-mipsbe-en-20211208
resource tags

arch:mipsimage:debian9-mipsbe-en-20211208kernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
15-02-2023 00:00

Target

34f600c6139a9bf603168a986cdb2eb0.elf
Size

113KB
MD5

34f600c6139a9bf603168a986cdb2eb0
SHA1

5a6e5a898b9677e0f42afc132f4c0beae8f40b7b
SHA256

24b3494f2822f38f51c354f16520d75f85cedbfacd46b31fb5069466c79c24a9
SHA512

8b37b4af80cedf500afbcc383ac91b2e932d99f8eacaff6d6ea8fdf7fed4abaae37ee3710dd6a4b91046889aade2f9e605b2522409b8a47a9289728bb44c07c8
SSDEEP

3072:C/4g3Kd1r85hZmxgA9OKdwwjF9GhsR1Ae:O9an85hZLHKdwwjF9GhsR1Ae

Score

7^/10

Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.

System Network Configuration Discovery
T1016

Processes:

34f600c6139a9bf603168a986cdb2eb0.elf

description ioc process

/proc/net/route /proc/net/route 34f600c6139a9bf603168a986cdb2eb0.elf
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.

System Network Configuration Discovery
T1016

Processes:

34f600c6139a9bf603168a986cdb2eb0.elf

description ioc process

/proc/net/route /proc/net/route 34f600c6139a9bf603168a986cdb2eb0.elf

description	ioc	process
/proc/net/route	/proc/net/route	34f600c6139a9bf603168a986cdb2eb0.elf

description	ioc	process
/proc/net/route	/proc/net/route	34f600c6139a9bf603168a986cdb2eb0.elf

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact