Analysis
-
max time kernel
0s -
max time network
156s -
platform
debian-9_mips -
resource
debian9-mipsbe-20221111-en -
resource tags
arch:mipsimage:debian9-mipsbe-20221111-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem -
submitted
16-02-2023 07:52
Behavioral task
behavioral1
Sample
e942665461546e80b345b1bb0c3769ec.elf
Resource
debian9-mipsbe-20221111-en
debian-9-mips
2 signatures
300 seconds
General
-
Target
e942665461546e80b345b1bb0c3769ec.elf
-
Size
170KB
-
MD5
e942665461546e80b345b1bb0c3769ec
-
SHA1
9cefecd8a2f34454096ffeae1a55f65203fbe5e6
-
SHA256
cd31f717a2ed1a4fde2cd528a1c5006c1f1e7f17284542b9bd27d1c8c37f0cdc
-
SHA512
0a3f285668e5b1e8ddc5eace58ba0557a2dc7bc13bcab3d01ff4a59ac0c6c0f810580978471a562d8e5850f88efedcf6317f74a8f76549c85b5d83b91c7f6e62
-
SSDEEP
3072:3JLQ/T+3IPZmnMUdXmA6ufiQO/nbSrldQnq2Z4c2bO:ZLOCXmEf0jSrldQnq2Z4c2bO
Score
7/10
Malware Config
Signatures
-
Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.
Processes:
e942665461546e80b345b1bb0c3769ec.elfdescription ioc process /proc/net/route /proc/net/route e942665461546e80b345b1bb0c3769ec.elf -
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.
Processes:
e942665461546e80b345b1bb0c3769ec.elfdescription ioc process /proc/net/route /proc/net/route e942665461546e80b345b1bb0c3769ec.elf