Analysis
-
max time kernel
10814s -
max time network
150s -
platform
debian-9_mipsel -
resource
debian9-mipsel-20221111-en -
resource tags
arch:mipselimage:debian9-mipsel-20221111-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem -
submitted
16-03-2023 22:04
Behavioral task
behavioral1
Sample
139a16b71c531cc7f988c1006e3ccd50.elf
Resource
debian9-mipsel-20221111-en
debian-9-mipsel
2 signatures
150 seconds
General
-
Target
139a16b71c531cc7f988c1006e3ccd50.elf
-
Size
113KB
-
MD5
139a16b71c531cc7f988c1006e3ccd50
-
SHA1
d1c54618de86efad599914e1377b692a28d68531
-
SHA256
594767ab9c7dbd9478ce2ef1a45ff91c6b357ee7b616ae5e7e0020404acbba76
-
SHA512
c526fa99025fea9e1037edf62bda5046a68222b9acd1bb81218aa1f9c824ad375f1cc0a97e521509223111f16b3b3d41581632e4d6a95d7217f71cf103ae1bfc
-
SSDEEP
1536:Tgz/qzNLW/fMiZIX98U0I/QwErQNO45hVwbfKdwwjF9GhCPR1Ae:Tgz/5f5g8utgM5hVwjKdwwjF9GhsR1Ae
Score
7/10
Malware Config
Signatures
-
Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.
Processes:
139a16b71c531cc7f988c1006e3ccd50.elfdescription ioc process /proc/net/route /proc/net/route 139a16b71c531cc7f988c1006e3ccd50.elf -
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.
Processes:
139a16b71c531cc7f988c1006e3ccd50.elfdescription ioc process /proc/net/route /proc/net/route 139a16b71c531cc7f988c1006e3ccd50.elf