398756b0e97baca2ba7fbbb4fa97744e4b15ba25b03b8b8c2e6bd43252fc3da5

Analysis

max time kernel
10815s
max time network
150s
platform
debian-9_mips
resource
debian9-mipsbe-20221111-en
resource tags

arch:mipsimage:debian9-mipsbe-20221111-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
16-03-2023 22:04

Target

031a7c376cebe22c6899ae4253f8a189.elf
Size

113KB
MD5

031a7c376cebe22c6899ae4253f8a189
SHA1

c412f312fef22984242f46f05a88df2b34148ebf
SHA256

398756b0e97baca2ba7fbbb4fa97744e4b15ba25b03b8b8c2e6bd43252fc3da5
SHA512

6a7e7fa0cd63127e9f77e6c6d5a935aa7542724eaba38c2a6df55337f9f4fb3ddcf096effd08cd1532255e40102ce0bb81fd27fa70362422cdec7dc84a6a33b4
SSDEEP

3072:C/4g3Kd1rU5hZmxgA9OKdwwjF9GhsR1Ae:O9anU5hZLHKdwwjF9GhsR1Ae

Score

7^/10

Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.

System Network Configuration Discovery
T1016

Processes:

031a7c376cebe22c6899ae4253f8a189.elf

description ioc process

/proc/net/route /proc/net/route 031a7c376cebe22c6899ae4253f8a189.elf
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.

System Network Configuration Discovery
T1016

Processes:

031a7c376cebe22c6899ae4253f8a189.elf

description ioc process

/proc/net/route /proc/net/route 031a7c376cebe22c6899ae4253f8a189.elf

description	ioc	process
/proc/net/route	/proc/net/route	031a7c376cebe22c6899ae4253f8a189.elf

description	ioc	process
/proc/net/route	/proc/net/route	031a7c376cebe22c6899ae4253f8a189.elf

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact