aad9eb8b1fad45af6e3e6216fe0ebcad67415aef87f6f5223717e388a8c8a0c4

Analysis

max time kernel
37529s
max time network
152s
platform
linux_mipsel
resource
debian9-mipsel-en-20211208
resource tags

arch:mipselimage:debian9-mipsel-en-20211208kernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
submitted
16-02-2023 02:02

Target

b72a7f83aa945ac71736b67a813e8614c2fb351bf42002528f9249d30ed9fc2f.elf
Size

246KB
MD5

f789e9df7bea8a1a46510e0fd6974506
SHA1

0a96ac00e80faf9ad75140701567a2bd96de1d79
SHA256

b72a7f83aa945ac71736b67a813e8614c2fb351bf42002528f9249d30ed9fc2f
SHA512

23ed1471448d9d7e255e2c6d4e20a86002c4c5835216b6e4e1507627ab074458a2cd11528688bff08c70d3bbabcb0f1dc4e8af3ee01cd2c48beba6a973b19b97
SSDEEP

3072:NtDIdNdngB+WWh19icCS0/dvVzSmB2kqh2RBTDI:NtDIdbgBvWhD0/dvRSmB2kqh2RBTDI

Score

7^/10

Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.

System Network Configuration Discovery
T1016

Processes:

b72a7f83aa945ac71736b67a813e8614c2fb351bf42002528f9249d30ed9fc2f.elf

description ioc process

/proc/net/route /proc/net/route b72a7f83aa945ac71736b67a813e8614c2fb351bf42002528f9249d30ed9fc2f.elf
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.

System Network Configuration Discovery
T1016

Processes:

b72a7f83aa945ac71736b67a813e8614c2fb351bf42002528f9249d30ed9fc2f.elf

description ioc process

/proc/net/route /proc/net/route b72a7f83aa945ac71736b67a813e8614c2fb351bf42002528f9249d30ed9fc2f.elf

description	ioc	process
/proc/net/route	/proc/net/route	b72a7f83aa945ac71736b67a813e8614c2fb351bf42002528f9249d30ed9fc2f.elf

description	ioc	process
/proc/net/route	/proc/net/route	b72a7f83aa945ac71736b67a813e8614c2fb351bf42002528f9249d30ed9fc2f.elf

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact