4b84c9a9df3574dc547aea9c9396621cade0766270ccc71818afaad4ab597246

Analysis

max time kernel
40062s
max time network
148s
platform
linux_mipsel
resource
debian9-mipsel-en-20211208
resource tags

arch:mipselimage:debian9-mipsel-en-20211208kernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
submitted
17/03/2023, 09:32

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

fd0f42bcdd23d58f14a88ed99d6c51ac.elf
Size

44KB
MD5

fd0f42bcdd23d58f14a88ed99d6c51ac
SHA1

e84d0b9c19f0ec1701481596733e5332d1a7be23
SHA256

4b84c9a9df3574dc547aea9c9396621cade0766270ccc71818afaad4ab597246
SHA512

26ac2859c1aaa89cca42c194a6f8a01fade5a32ece32d1f283738c340a7475ad6213b4cec468db18f50d146225ce24fa2c5c7f284467f373038487f67d9fc110
SSDEEP

768:fMZ//IivxQHZhHSOSy/HmS2GWTl3y/OUDcdtKTtJzuP0/5WRuHU9+GszE:fMZ/aH3SOXmHN+O6cdY7uP0lU8zE

Score

7^/10

Malware Config

Signatures

Reads system routing table 1 TTPs 1 IoCs

Gets active network interfaces from /proc virtual filesystem.

System Network Configuration Discovery

T1016

description	ioc	Process
/proc/net/route	/proc/net/route	fd0f42bcdd23d58f14a88ed99d6c51ac.elf

Reads system network configuration 1 TTPs 1 IoCs

Uses contents of /proc filesystem to enumerate network settings.

System Network Configuration Discovery

T1016

description	ioc	Process
/proc/net/route	/proc/net/route	fd0f42bcdd23d58f14a88ed99d6c51ac.elf

Reads runtime system information 1 IoCs

Reads data from /proc virtual filesystem.

description	ioc	Process
/proc/self/exe	/proc/self/exe	fd0f42bcdd23d58f14a88ed99d6c51ac.elf

/tmp/fd0f42bcdd23d58f14a88ed99d6c51ac.elf
/tmp/fd0f42bcdd23d58f14a88ed99d6c51ac.elf
1⤵
- Reads system routing table
- Reads system network configuration
- Reads runtime system information
PID:325

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1016

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Windows 7 deprecation

Loading Replay Monitor...

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads