13eceb4b809cb883fd19b3d549bd853c950967e5431323b2fecc2824f6392906

Analysis

max time kernel
40240s
max time network
150s
platform
linux_mipsel
resource
debian9-mipsel-en-20211208
resource tags

arch:mipselimage:debian9-mipsel-en-20211208kernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
submitted
19-03-2023 10:56

Target

14daef52b2df156a138c92ddf66ffa58.elf
Size

113KB
MD5

14daef52b2df156a138c92ddf66ffa58
SHA1

e9b4d469faf5e24308fb9f844b0ba1dc73baa02c
SHA256

13eceb4b809cb883fd19b3d549bd853c950967e5431323b2fecc2824f6392906
SHA512

245e532084690b5b280f4583739f0368082a41165aef9cf9c05b4a0b4a9b487bee7193aecdecef6232fdfa02a2c76a0d5d91aa9a199fcf5f1602c11d8617e5cf
SSDEEP

3072:UmJnlmfYvJMUyNhr5h1zKdwwjF9GhsR1Ae:NdJMUohr5h1zKdwwjF9GhsR1Ae

Score

7^/10

Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.

System Network Configuration Discovery
T1016

Processes:

14daef52b2df156a138c92ddf66ffa58.elf

description ioc process

/proc/net/route /proc/net/route 14daef52b2df156a138c92ddf66ffa58.elf
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.

System Network Configuration Discovery
T1016

Processes:

14daef52b2df156a138c92ddf66ffa58.elf

description ioc process

/proc/net/route /proc/net/route 14daef52b2df156a138c92ddf66ffa58.elf

description	ioc	process
/proc/net/route	/proc/net/route	14daef52b2df156a138c92ddf66ffa58.elf

description	ioc	process
/proc/net/route	/proc/net/route	14daef52b2df156a138c92ddf66ffa58.elf

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact