Analysis
-
max time kernel
0s -
max time network
124s -
platform
debian-9_mipsel -
resource
debian9-mipsel-20221111-en -
resource tags
arch:mipselimage:debian9-mipsel-20221111-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem -
submitted
26-03-2023 01:27
Behavioral task
behavioral1
Sample
d19868450fa290924c1f1c53c0843b98ccb33c90c83439ba2bb623d6b870d27c.elf
Resource
debian9-mipsel-20221111-en
General
-
Target
d19868450fa290924c1f1c53c0843b98ccb33c90c83439ba2bb623d6b870d27c.elf
-
Size
152KB
-
MD5
61f0f089e64dc49c81f36c3765295798
-
SHA1
2faecfe735fcf82fc2aa9f3d65ae9218fd0725cc
-
SHA256
d19868450fa290924c1f1c53c0843b98ccb33c90c83439ba2bb623d6b870d27c
-
SHA512
59cc7c603e0cf97d4a9ed460aa662e42df1fe92ea91bc2415bef97be88b23ba60cfa98be9369fb0eebfc55c64e39473657ac2aaaae0bc0162cc59ae6e86a4353
-
SSDEEP
1536:VveTEaqPFvpANUoMBa1ZYylww/0ezOQllv5hFZdMyl1h7dwwUF91xf1zlwe:VFz7o11NvKO5hFvl1h7dwwUF91x9zlwe
Malware Config
Signatures
-
Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.
Processes:
d19868450fa290924c1f1c53c0843b98ccb33c90c83439ba2bb623d6b870d27c.elfdescription ioc process /proc/net/route /proc/net/route d19868450fa290924c1f1c53c0843b98ccb33c90c83439ba2bb623d6b870d27c.elf -
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.
Processes:
d19868450fa290924c1f1c53c0843b98ccb33c90c83439ba2bb623d6b870d27c.elfdescription ioc process /proc/net/route /proc/net/route d19868450fa290924c1f1c53c0843b98ccb33c90c83439ba2bb623d6b870d27c.elf