594767ab9c7dbd9478ce2ef1a45ff91c6b357ee7b616ae5e7e0020404acbba76

Analysis

max time kernel
10814s
max time network
150s
platform
debian-9_mipsel
resource
debian9-mipsel-20221111-en
resource tags

arch:mipselimage:debian9-mipsel-20221111-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
submitted
16-03-2023 22:04

Target

139a16b71c531cc7f988c1006e3ccd50.elf
Size

113KB
MD5

139a16b71c531cc7f988c1006e3ccd50
SHA1

d1c54618de86efad599914e1377b692a28d68531
SHA256

594767ab9c7dbd9478ce2ef1a45ff91c6b357ee7b616ae5e7e0020404acbba76
SHA512

c526fa99025fea9e1037edf62bda5046a68222b9acd1bb81218aa1f9c824ad375f1cc0a97e521509223111f16b3b3d41581632e4d6a95d7217f71cf103ae1bfc
SSDEEP

1536:Tgz/qzNLW/fMiZIX98U0I/QwErQNO45hVwbfKdwwjF9GhCPR1Ae:Tgz/5f5g8utgM5hVwjKdwwjF9GhsR1Ae

Score

7^/10

Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.

System Network Configuration Discovery
T1016

Processes:

139a16b71c531cc7f988c1006e3ccd50.elf

description ioc process

/proc/net/route /proc/net/route 139a16b71c531cc7f988c1006e3ccd50.elf
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.

System Network Configuration Discovery
T1016

Processes:

139a16b71c531cc7f988c1006e3ccd50.elf

description ioc process

/proc/net/route /proc/net/route 139a16b71c531cc7f988c1006e3ccd50.elf

description	ioc	process
/proc/net/route	/proc/net/route	139a16b71c531cc7f988c1006e3ccd50.elf

description	ioc	process
/proc/net/route	/proc/net/route	139a16b71c531cc7f988c1006e3ccd50.elf

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact