b6d09b5681cdb910219d0b9837bbda0f131dfe6827619ac12c34193e9a6ba374

Analysis

max time kernel
40075s
max time network
120s
platform
linux_mipsel
resource
debian9-mipsel-en-20211208
resource tags

arch:mipselimage:debian9-mipsel-en-20211208kernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
submitted
17-03-2023 13:07

Target

fa470fef05b6569db8e3b35db6bb787c
Size

123KB
MD5

fa470fef05b6569db8e3b35db6bb787c
SHA1

784c11640302d6af4a2590b99f280be049cc2ebc
SHA256

b6d09b5681cdb910219d0b9837bbda0f131dfe6827619ac12c34193e9a6ba374
SHA512

69f01df59c62b4d345feb4a19f2c0a68dace0737d9c611523bdc7cb0ef217b9a99a6492d207aa6f5160c907fda3779e421b6b1f730b05c442857254c6f96c0f3
SSDEEP

1536:KHeTxSA2cMYWZ2IV6oQ43wc4wUYkOcdpXPlYUrmW+IFB1Df11hR/:KZ55QGwc4McdlPqUrmW+IFB1Dt1hR/

Score

7^/10

Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.

System Network Configuration Discovery
T1016

Processes:

fa470fef05b6569db8e3b35db6bb787c

description ioc process

/proc/net/route /proc/net/route fa470fef05b6569db8e3b35db6bb787c
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.

System Network Configuration Discovery
T1016

Processes:

fa470fef05b6569db8e3b35db6bb787c

description ioc process

/proc/net/route /proc/net/route fa470fef05b6569db8e3b35db6bb787c

description	ioc	process
/proc/net/route	/proc/net/route	fa470fef05b6569db8e3b35db6bb787c

description	ioc	process
/proc/net/route	/proc/net/route	fa470fef05b6569db8e3b35db6bb787c

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact