953d0ec2cbdcab645fdf93b1f9a7173be3f84f7f0a30220fb2bae85430ca1f3c

Analysis

max time kernel
41587s
max time network
147s
platform
linux_mipsel
resource
debian9-mipsel-en-20211208
resource tags

arch:mipselimage:debian9-mipsel-en-20211208kernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
submitted
04-04-2023 01:14

Target

d2efc40937befc168f8d8c4c985a3375184c6c8db577cb926e51cd00243499e5.elf
Size

111KB
MD5

3832a7cfc035c66d84614505865e6041
SHA1

d2ee5ae8f9e75a83cd03f5fb4fed5cb0e3fb79c8
SHA256

d2efc40937befc168f8d8c4c985a3375184c6c8db577cb926e51cd00243499e5
SHA512

55404818af96c0fa412f532cdd498fa93e26991e173ba2531f96d5ef56d343c75346ad32e9735532e4f678fbabc7f7e301b39fe3094232dd25586ed226687c06
SSDEEP

3072:ZdfnOgVToszag5hVT+tDBxmkizF9GhsRiAe:Zd/TTXmg5hVytDBxmkizF9GhsRiAe

Score

7^/10

Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.

System Network Configuration Discovery
T1016

Processes:

d2efc40937befc168f8d8c4c985a3375184c6c8db577cb926e51cd00243499e5.elf

description ioc process

/proc/net/route /proc/net/route d2efc40937befc168f8d8c4c985a3375184c6c8db577cb926e51cd00243499e5.elf
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.

System Network Configuration Discovery
T1016

Processes:

d2efc40937befc168f8d8c4c985a3375184c6c8db577cb926e51cd00243499e5.elf

description ioc process

/proc/net/route /proc/net/route d2efc40937befc168f8d8c4c985a3375184c6c8db577cb926e51cd00243499e5.elf

description	ioc	process
/proc/net/route	/proc/net/route	d2efc40937befc168f8d8c4c985a3375184c6c8db577cb926e51cd00243499e5.elf

description	ioc	process
/proc/net/route	/proc/net/route	d2efc40937befc168f8d8c4c985a3375184c6c8db577cb926e51cd00243499e5.elf

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact