Overview

overview

10

Static

static

10

f7cb62ac6f...83.elf

debian-9-armhf

7

Analysis

  • max time kernel
    37548s
  • max time network
    153s
  • platform
    linux_armhf
  • resource
    debian9-armhf-en-20211208
  • resource tags

    arch:armhfimage:debian9-armhf-en-20211208kernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    16/02/2023, 06:57

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    f7cb62ac6f106be2482676bd48f83983.elf

  • Size

    218KB

  • MD5

    f7cb62ac6f106be2482676bd48f83983

  • SHA1

    42b4adcf1e8b54a900cab8a5d88019387fb7c3b6

  • SHA256

    9b59d125c9d09126c9a1f955f47fdfdb366afadb13a35dd9b33876662907d133

  • SHA512

    0ffa53d8f091b51fdf20768f6a49904633e6aee6be6e67d04079861c15074f8f6142572e86f2a9b8fc02f4f63b164b86f2ef8f6e4a8f913e26bff65ed1027dd5

  • SSDEEP

    6144:9CdFZaRJaIL5yGB24cwK5hhdOeC3nqM/9ppmmrwif5RJK5e:9CdFyJaIL5yGBMf5hbED/smrbf5RJK5e

Score
7/10

Malware Config

Signatures

  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

Processes

  • /tmp/f7cb62ac6f106be2482676bd48f83983.elf
    /tmp/f7cb62ac6f106be2482676bd48f83983.elf
    1⤵
    • Reads system routing table
    • Reads system network configuration
    PID:356

Network

        MITRE ATT&CK Enterprise v6

        Replay Monitor

        Loading Replay Monitor...

        Downloads