a41fd906480305bd172042a08b61e7d2083e8e5085d1600f662165110a185dc4

Analysis

max time kernel
8230s
max time network
151s
platform
debian-9_mipsel
resource
debian9-mipsel-20221111-en
resource tags

arch:mipselimage:debian9-mipsel-20221111-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
submitted
15-02-2023 00:09

Target

285a4d9c63473a466ebdfd30ed3e3c68.elf
Size

144KB
MD5

285a4d9c63473a466ebdfd30ed3e3c68
SHA1

797b2fc730cd5378de573a74a9937026ee6429f6
SHA256

a41fd906480305bd172042a08b61e7d2083e8e5085d1600f662165110a185dc4
SHA512

666d9000e6cea13cc7bf15881d50631e08d8ed9372be430e39b35a2cd9a78b8ef9385c02c37ad062468634460c6fd86b270f71978f31f333564d8dd4334c4885
SSDEEP

1536:diRneTr8T5jZU2MiZBuh/9sfkE0AIkQ5X0Az8JOhmvj3q+13fJotx5:eIB2hHfl0Rv0a8Ihmvj3q+13Botx5

Score

7^/10

Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.

System Network Configuration Discovery
T1016

Processes:

285a4d9c63473a466ebdfd30ed3e3c68.elf

description ioc process

/proc/net/route /proc/net/route 285a4d9c63473a466ebdfd30ed3e3c68.elf
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.

System Network Configuration Discovery
T1016

Processes:

285a4d9c63473a466ebdfd30ed3e3c68.elf

description ioc process

/proc/net/route /proc/net/route 285a4d9c63473a466ebdfd30ed3e3c68.elf

description	ioc	process
/proc/net/route	/proc/net/route	285a4d9c63473a466ebdfd30ed3e3c68.elf

description	ioc	process
/proc/net/route	/proc/net/route	285a4d9c63473a466ebdfd30ed3e3c68.elf

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact