General
-
Target
ef72909ce48b7aa09bea11c73194820a.elf
-
Size
358KB
-
Sample
230406-hsm8vsdg9x
-
MD5
ef72909ce48b7aa09bea11c73194820a
-
SHA1
405cb65139cf94b45b8e0922960e693da2ed09a9
-
SHA256
33defc4ecff8a0b40c66bb797cb127c4f3df647a50c2995bd7b9414ba05716b1
-
SHA512
fdf5b89bca9ac5824ec5a31bda028bd8c1afb37c621632897c1359b8004589912787d1b8641214d16452ff068548ca09ea12d13bdecb41010f2e6e16222a841f
-
SSDEEP
6144:YCWUWbbMK14mECiqWmOaC1ztPASfIOV68eU1fY5hEQrDh895BtLyhbkMOzqzFSAZ:jvqOyURY55PYOhbkMOGzc6z9FmiIuCYp
Behavioral task
behavioral1
Sample
ef72909ce48b7aa09bea11c73194820a.elf
Resource
debian9-mipsel-20221111-en
Malware Config
Targets
-
-
Target
ef72909ce48b7aa09bea11c73194820a.elf
-
Size
358KB
-
MD5
ef72909ce48b7aa09bea11c73194820a
-
SHA1
405cb65139cf94b45b8e0922960e693da2ed09a9
-
SHA256
33defc4ecff8a0b40c66bb797cb127c4f3df647a50c2995bd7b9414ba05716b1
-
SHA512
fdf5b89bca9ac5824ec5a31bda028bd8c1afb37c621632897c1359b8004589912787d1b8641214d16452ff068548ca09ea12d13bdecb41010f2e6e16222a841f
-
SSDEEP
6144:YCWUWbbMK14mECiqWmOaC1ztPASfIOV68eU1fY5hEQrDh895BtLyhbkMOzqzFSAZ:jvqOyURY55PYOhbkMOGzc6z9FmiIuCYp
Score9/10-
Attempts to identify hypervisor via CPU configuration
Checks CPU information for indicators that the system is a virtual machine.
-
Modifies hosts file
Adds to hosts file used for mapping hosts to IP addresses.
-
Writes DNS configuration
Writes data to DNS resolver config file.
-
Reads runtime system information
Reads data from /proc virtual filesystem.
-