Overview

overview

5

Static

static

1

bok.arm6.elf

debian-9-armhf

5

Analysis

  • max time kernel
    0s
  • max time network
    124s
  • platform
    linux_armhf
  • resource
    debian9-armhf-en-20211208
  • resource tags

    arch:armhfimage:debian9-armhf-en-20211208kernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    03-03-2023 03:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bok.arm6.elf

  • Size

    44KB

  • MD5

    c9a1af5a967b069e7b8508541c63d767

  • SHA1

    7997075b4aa68747d70ce75b72e1beb8818addcd

  • SHA256

    6ac224eab4a9c8de7b6e758d8610af488af37ebc03629b4b1a2c753c71affdfa

  • SHA512

    bf6ac57e89ee0814e69e51a04b179a7e21b1386135223a46127ee72a8af37df60557c3777c20721e251ab34181a2f5d96417469f2b569bd250a407c9124edcd2

  • SSDEEP

    768:7SmTMZJzfpU6kFVaSiOfPrmbTmHvF9AIghd/xKRYhnUD/LwuAvdq8SyN9q3UELQH:ewqhUd8S53rmcvPE8Yhy/kuAvdDS9LS

Score
5/10

Malware Config

Signatures

  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/bok.arm6.elf
    /tmp/bok.arm6.elf
    1⤵
    • Reads runtime system information
    PID:363

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads