Analysis
-
max time kernel
0s -
max time network
125s -
platform
debian-9_mips -
resource
debian9-mipsbe-20221111-en -
resource tags
arch:mipsimage:debian9-mipsbe-20221111-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem -
submitted
16-02-2023 05:03
Behavioral task
behavioral1
Sample
1fd1d3179487ad971f7fd58e0a426ebd.elf
Resource
debian9-mipsbe-20221111-en
debian-9-mips
2 signatures
150 seconds
General
-
Target
1fd1d3179487ad971f7fd58e0a426ebd.elf
-
Size
131KB
-
MD5
1fd1d3179487ad971f7fd58e0a426ebd
-
SHA1
172e023aa2e2ec7378f39a08fda53d77a94a4c0c
-
SHA256
40a74939860fd9be6c654cb52bd661dfafb9cbb2a90e886506efec6e7e9a341d
-
SHA512
e1ad32d72d0162dd20e86e6c69edde2aa8dbf9d074da996fca081fe61b3ccf0295bff575d1b7f0f36ee499f0ac77252cc45b5244eb11377c24cb476f47895f91
-
SSDEEP
3072:jGTyrDxJWwAfr9f3yJddxUEJmTDmjOrWcpu3NJFARtRVJhGvaZqhZYiDhB/ZZ9BL:C+nZSZ/nJeUmkASFxBKvXZX
Score
7/10
Malware Config
Signatures
-
Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.
Processes:
1fd1d3179487ad971f7fd58e0a426ebd.elfdescription ioc process /proc/net/route /proc/net/route 1fd1d3179487ad971f7fd58e0a426ebd.elf -
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.
Processes:
1fd1d3179487ad971f7fd58e0a426ebd.elfdescription ioc process /proc/net/route /proc/net/route 1fd1d3179487ad971f7fd58e0a426ebd.elf