Analysis
-
max time kernel
39083s -
max time network
147s -
platform
linux_mips -
resource
debian9-mipsbe-en-20211208 -
resource tags
arch:mipsimage:debian9-mipsbe-en-20211208kernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem -
submitted
06-03-2023 01:42
Behavioral task
behavioral1
Sample
e876b6c9ba578bc8c645ec499c99493d603e227ae1e0c342f1c769e68bc7ef05.elf
Resource
debian9-mipsbe-en-20211208
debian-9-mips
2 signatures
150 seconds
General
-
Target
e876b6c9ba578bc8c645ec499c99493d603e227ae1e0c342f1c769e68bc7ef05.elf
-
Size
113KB
-
MD5
b448e32063353845e25ff71c34cf05f8
-
SHA1
65a563cca6d1358522ed68e9f5ec1b099ece5d41
-
SHA256
e876b6c9ba578bc8c645ec499c99493d603e227ae1e0c342f1c769e68bc7ef05
-
SHA512
44443d37313518b5a69af8c103d90f3e40c054fd32d071980f59a5022b3cc0b0393597a46281c0fd6dd0deed5cc11658234fe007d579334202c4c35a3fc969a6
-
SSDEEP
3072:C/4g3Kd1rn5hZmxgA9OKdwwjF9GhsR1Ae:O9ann5hZLHKdwwjF9GhsR1Ae
Score
7/10
Malware Config
Signatures
-
Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.
Processes:
e876b6c9ba578bc8c645ec499c99493d603e227ae1e0c342f1c769e68bc7ef05.elfdescription ioc process /proc/net/route /proc/net/route e876b6c9ba578bc8c645ec499c99493d603e227ae1e0c342f1c769e68bc7ef05.elf -
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.
Processes:
e876b6c9ba578bc8c645ec499c99493d603e227ae1e0c342f1c769e68bc7ef05.elfdescription ioc process /proc/net/route /proc/net/route e876b6c9ba578bc8c645ec499c99493d603e227ae1e0c342f1c769e68bc7ef05.elf