5ecca4d462d9993537d3084fba690bdd07db02220844203217e228d19ce4e63f

Analysis

max time kernel
40023s
max time network
151s
platform
linux_mips
resource
debian9-mipsbe-en-20211208
resource tags

arch:mipsimage:debian9-mipsbe-en-20211208kernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
16-03-2023 22:38

Target

b068bc2d241537d6d61594db383b8d4b.elf
Size

123KB
MD5

b068bc2d241537d6d61594db383b8d4b
SHA1

a69cf94d87357e1f66f603a911dff4aaf8721546
SHA256

5ecca4d462d9993537d3084fba690bdd07db02220844203217e228d19ce4e63f
SHA512

beabd460819e68506e31fad4bc918cd14da63d084992c6ca536482f298bf1a1dae174c5b993072d692afa5628882bcd0bf95b479215fca9aa20b65b2bd5f3571
SSDEEP

1536:M7je1TMGq+f+AQ2rK7zeXeReXe8V2rK7Ie+u60GAzQj1l72HBeIEdWfRZrmW+IFj:Ted0W0MZQHad6RZrmW+IFB1Dt1hR/

Score

7^/10

Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.

System Network Configuration Discovery
T1016

Processes:

b068bc2d241537d6d61594db383b8d4b.elf

description ioc process

/proc/net/route /proc/net/route b068bc2d241537d6d61594db383b8d4b.elf
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.

System Network Configuration Discovery
T1016

Processes:

b068bc2d241537d6d61594db383b8d4b.elf

description ioc process

/proc/net/route /proc/net/route b068bc2d241537d6d61594db383b8d4b.elf

description	ioc	process
/proc/net/route	/proc/net/route	b068bc2d241537d6d61594db383b8d4b.elf

description	ioc	process
/proc/net/route	/proc/net/route	b068bc2d241537d6d61594db383b8d4b.elf

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact