Overview

overview

10

Static

static

10

74d6ce3c9c...e1.elf

debian-9-armhf

7

Analysis

  • max time kernel
    0s
  • max time network
    151s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20221111-en
  • resource tags

    arch:armhfimage:debian9-armhf-20221111-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    16-03-2023 22:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    74d6ce3c9c217df65b6742200b2945e1.elf

  • Size

    152KB

  • MD5

    74d6ce3c9c217df65b6742200b2945e1

  • SHA1

    93b0c439cc388be128b3915ce1f785e1d6413b94

  • SHA256

    91e9295407361176338ecdad7570e6067bc0f275742bb88d98edd6bf549d6ba9

  • SHA512

    db5212f4ff572d7d40f576f84b7b0307b203dfcfb2dfaa32afe628c94100355bdc6c8d2d388e98951eb691faaf10a0d11cd22a73db07becfa85042edb1537d94

  • SSDEEP

    3072:tdntU2haO5H1XacBoGmh9H5I5hDiGRvEM/9f9T637m5wTsL/Qpyn:ntVhaO5H1qEc9Hm5hDiGRcM/9l+7m5wS

Score
7/10

Malware Config

Signatures

  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

Processes

  • /tmp/74d6ce3c9c217df65b6742200b2945e1.elf
    /tmp/74d6ce3c9c217df65b6742200b2945e1.elf
    1⤵
    • Reads system routing table
    • Reads system network configuration
    PID:364

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads