5ecca4d462d9993537d3084fba690bdd07db02220844203217e228d19ce4e63f

Analysis

max time kernel
40023s
max time network
151s
platform
linux_mips
resource
debian9-mipsbe-en-20211208
resource tags

arch:mipsimage:debian9-mipsbe-en-20211208kernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
16/03/2023, 22:38

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

b068bc2d241537d6d61594db383b8d4b.elf
Size

123KB
MD5

b068bc2d241537d6d61594db383b8d4b
SHA1

a69cf94d87357e1f66f603a911dff4aaf8721546
SHA256

5ecca4d462d9993537d3084fba690bdd07db02220844203217e228d19ce4e63f
SHA512

beabd460819e68506e31fad4bc918cd14da63d084992c6ca536482f298bf1a1dae174c5b993072d692afa5628882bcd0bf95b479215fca9aa20b65b2bd5f3571
SSDEEP

1536:M7je1TMGq+f+AQ2rK7zeXeReXe8V2rK7Ie+u60GAzQj1l72HBeIEdWfRZrmW+IFj:Ted0W0MZQHad6RZrmW+IFB1Dt1hR/

Score

7^/10

Malware Config

Signatures

Reads system routing table 1 TTPs 1 IoCs

Gets active network interfaces from /proc virtual filesystem.

System Network Configuration Discovery

T1016

description	ioc	Process
/proc/net/route	/proc/net/route	b068bc2d241537d6d61594db383b8d4b.elf

Reads system network configuration 1 TTPs 1 IoCs

Uses contents of /proc filesystem to enumerate network settings.

System Network Configuration Discovery

T1016

description	ioc	Process
/proc/net/route	/proc/net/route	b068bc2d241537d6d61594db383b8d4b.elf

/tmp/b068bc2d241537d6d61594db383b8d4b.elf
/tmp/b068bc2d241537d6d61594db383b8d4b.elf
1⤵
- Reads system routing table
- Reads system network configuration
PID:331

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1016

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Windows 7 deprecation

Loading Replay Monitor...

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads