General
-
Target
Demon.x86.elf
-
Size
83KB
-
Sample
230216-e79hvsfd9w
-
MD5
8342a3cadeebc4e7cc008c162cb8f265
-
SHA1
fdbefdd8a3efddedacc01ca4447966dd412a1903
-
SHA256
f44fd297fbb5db0d50699a82e902cbafbad66a585e52bf8c0377038964b1d74b
-
SHA512
addc8ddebf405534343a87d5f9dd93ba7091793c21c9a541f83052871665b9e733649bdf604a2f6d1e7f3ee62118ba4893283cc179f201fee682cc8738706db4
-
SSDEEP
1536:F74ou/0APSbKhakxnkc6yw83lJ1F2y2SDRMfdmw+ZWOT42oF54S:1e0APSEtkc6yBlJayPodmvZWOT9oF54S
Behavioral task
behavioral1
Sample
Demon.x86.elf
Resource
ubuntu1804-amd64-20221111-en
Malware Config
Targets
-
-
Target
Demon.x86.elf
-
Size
83KB
-
MD5
8342a3cadeebc4e7cc008c162cb8f265
-
SHA1
fdbefdd8a3efddedacc01ca4447966dd412a1903
-
SHA256
f44fd297fbb5db0d50699a82e902cbafbad66a585e52bf8c0377038964b1d74b
-
SHA512
addc8ddebf405534343a87d5f9dd93ba7091793c21c9a541f83052871665b9e733649bdf604a2f6d1e7f3ee62118ba4893283cc179f201fee682cc8738706db4
-
SSDEEP
1536:F74ou/0APSbKhakxnkc6yw83lJ1F2y2SDRMfdmw+ZWOT42oF54S:1e0APSEtkc6yBlJayPodmvZWOT9oF54S
Score7/10-
Reads system routing table
Gets active network interfaces from /proc virtual filesystem.
-
Reads system network configuration
Uses contents of /proc filesystem to enumerate network settings.
-