Analysis
-
max time kernel
41587s -
max time network
147s -
platform
linux_mipsel -
resource
debian9-mipsel-en-20211208 -
resource tags
arch:mipselimage:debian9-mipsel-en-20211208kernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem -
submitted
04-04-2023 01:14
Behavioral task
behavioral1
Sample
d2efc40937befc168f8d8c4c985a3375184c6c8db577cb926e51cd00243499e5.elf
Resource
debian9-mipsel-en-20211208
debian-9-mipsel
2 signatures
150 seconds
General
-
Target
d2efc40937befc168f8d8c4c985a3375184c6c8db577cb926e51cd00243499e5.elf
-
Size
111KB
-
MD5
3832a7cfc035c66d84614505865e6041
-
SHA1
d2ee5ae8f9e75a83cd03f5fb4fed5cb0e3fb79c8
-
SHA256
d2efc40937befc168f8d8c4c985a3375184c6c8db577cb926e51cd00243499e5
-
SHA512
55404818af96c0fa412f532cdd498fa93e26991e173ba2531f96d5ef56d343c75346ad32e9735532e4f678fbabc7f7e301b39fe3094232dd25586ed226687c06
-
SSDEEP
3072:ZdfnOgVToszag5hVT+tDBxmkizF9GhsRiAe:Zd/TTXmg5hVytDBxmkizF9GhsRiAe
Score
7/10
Malware Config
Signatures
-
Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.
Processes:
d2efc40937befc168f8d8c4c985a3375184c6c8db577cb926e51cd00243499e5.elfdescription ioc process /proc/net/route /proc/net/route d2efc40937befc168f8d8c4c985a3375184c6c8db577cb926e51cd00243499e5.elf -
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.
Processes:
d2efc40937befc168f8d8c4c985a3375184c6c8db577cb926e51cd00243499e5.elfdescription ioc process /proc/net/route /proc/net/route d2efc40937befc168f8d8c4c985a3375184c6c8db577cb926e51cd00243499e5.elf