9d9e9dd9c1cc83865af1937ba3d8ffb6cd88d74dd32edc0335dd845a1f5039ea

Analysis

max time kernel
11521s
max time network
149s
platform
debian-9_mips
resource
debian9-mipsbe-20221111-en
resource tags

arch:mipsimage:debian9-mipsbe-20221111-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
25-03-2023 02:05

Target

8e09e51d5208da2e2340a6ebed8328757cd096a29d6b7e0ee7d6189c3dd08cf3.elf
Size

110KB
MD5

eda23694623e5fa04176d171e8a6c616
SHA1

dff56d6f0edd73eeda77a67199c4d317e4d0cf94
SHA256

8e09e51d5208da2e2340a6ebed8328757cd096a29d6b7e0ee7d6189c3dd08cf3
SHA512

d0d9b49e06e9d31c99d773a864e5d9b297a8409b40f8dbc8a21e13221ec53a1c75be4b470b7e1e3ac59ecbd5db64713eb7bcdd0696552aa76de778712e1e6cd6
SSDEEP

3072:R/4tNF9U4vvfKw6J73x8UmkiSFxfKxbXe:BUNFK+f8T8UmkiSFxfKxbXe

Score

7^/10

Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.

System Network Configuration Discovery
T1016

Processes:

8e09e51d5208da2e2340a6ebed8328757cd096a29d6b7e0ee7d6189c3dd08cf3.elf

description ioc process

/proc/net/route /proc/net/route 8e09e51d5208da2e2340a6ebed8328757cd096a29d6b7e0ee7d6189c3dd08cf3.elf
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.

System Network Configuration Discovery
T1016

Processes:

8e09e51d5208da2e2340a6ebed8328757cd096a29d6b7e0ee7d6189c3dd08cf3.elf

description ioc process

/proc/net/route /proc/net/route 8e09e51d5208da2e2340a6ebed8328757cd096a29d6b7e0ee7d6189c3dd08cf3.elf

description	ioc	process
/proc/net/route	/proc/net/route	8e09e51d5208da2e2340a6ebed8328757cd096a29d6b7e0ee7d6189c3dd08cf3.elf

description	ioc	process
/proc/net/route	/proc/net/route	8e09e51d5208da2e2340a6ebed8328757cd096a29d6b7e0ee7d6189c3dd08cf3.elf

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact