90fae94f5a142ba8e53a55009cb589304bcd8c7ac31ba45c9ccbd003cc609e45

Analysis

max time kernel
38425s
max time network
145s
platform
linux_mips
resource
debian9-mipsbe-en-20211208
resource tags

arch:mipsimage:debian9-mipsbe-en-20211208kernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
26-02-2023 10:51

Target

m-i.p-s.Sakura.elf
Size

123KB
MD5

aa6df7e3acba56e1b8056c9330fc9410
SHA1

93021ee1c732275aa9bd8be1e8e8baa42769f2e6
SHA256

90fae94f5a142ba8e53a55009cb589304bcd8c7ac31ba45c9ccbd003cc609e45
SHA512

b1a4771feaf7a8ed0fd109fd887548d63e1d30ff00117f62bd8600ec35146026e944d3629133e9ce48677a919792e57fccc080224a052de1ed2f57c310562aaf
SSDEEP

1536:M7je1TMGq+f+AQ2rK7zeXeReXe8V2rK7Ie+u60GAzQj1l72HBe+EdWfRZrmW+IFj:Ted0W0MZQHcd6RZrmW+IFB1Dt1hR/

Score

7^/10

Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.

System Network Configuration Discovery
T1016

Processes:

m-i.p-s.Sakura.elf

description ioc process

/proc/net/route /proc/net/route m-i.p-s.Sakura.elf
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.

System Network Configuration Discovery
T1016

Processes:

m-i.p-s.Sakura.elf

description ioc process

/proc/net/route /proc/net/route m-i.p-s.Sakura.elf

description	ioc	process
/proc/net/route	/proc/net/route	m-i.p-s.Sakura.elf

description	ioc	process
/proc/net/route	/proc/net/route	m-i.p-s.Sakura.elf

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact