Analysis
-
max time kernel
11521s -
max time network
149s -
platform
debian-9_mips -
resource
debian9-mipsbe-20221111-en -
resource tags
arch:mipsimage:debian9-mipsbe-20221111-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem -
submitted
25-03-2023 02:05
Behavioral task
behavioral1
Sample
8e09e51d5208da2e2340a6ebed8328757cd096a29d6b7e0ee7d6189c3dd08cf3.elf
Resource
debian9-mipsbe-20221111-en
debian-9-mips
2 signatures
150 seconds
General
-
Target
8e09e51d5208da2e2340a6ebed8328757cd096a29d6b7e0ee7d6189c3dd08cf3.elf
-
Size
110KB
-
MD5
eda23694623e5fa04176d171e8a6c616
-
SHA1
dff56d6f0edd73eeda77a67199c4d317e4d0cf94
-
SHA256
8e09e51d5208da2e2340a6ebed8328757cd096a29d6b7e0ee7d6189c3dd08cf3
-
SHA512
d0d9b49e06e9d31c99d773a864e5d9b297a8409b40f8dbc8a21e13221ec53a1c75be4b470b7e1e3ac59ecbd5db64713eb7bcdd0696552aa76de778712e1e6cd6
-
SSDEEP
3072:R/4tNF9U4vvfKw6J73x8UmkiSFxfKxbXe:BUNFK+f8T8UmkiSFxfKxbXe
Score
7/10
Malware Config
Signatures
-
Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.
Processes:
8e09e51d5208da2e2340a6ebed8328757cd096a29d6b7e0ee7d6189c3dd08cf3.elfdescription ioc process /proc/net/route /proc/net/route 8e09e51d5208da2e2340a6ebed8328757cd096a29d6b7e0ee7d6189c3dd08cf3.elf -
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.
Processes:
8e09e51d5208da2e2340a6ebed8328757cd096a29d6b7e0ee7d6189c3dd08cf3.elfdescription ioc process /proc/net/route /proc/net/route 8e09e51d5208da2e2340a6ebed8328757cd096a29d6b7e0ee7d6189c3dd08cf3.elf