Analysis
-
max time kernel
0s -
max time network
124s -
platform
debian-9_mips -
resource
debian9-mipsbe-20221111-en -
resource tags
arch:mipsimage:debian9-mipsbe-20221111-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem -
submitted
07-04-2023 19:28
Behavioral task
behavioral1
Sample
cefbb891d3b5653d010c3f1fa4538255.elf
Resource
debian9-mipsbe-20221111-en
debian-9-mips
2 signatures
150 seconds
General
-
Target
cefbb891d3b5653d010c3f1fa4538255.elf
-
Size
118KB
-
MD5
cefbb891d3b5653d010c3f1fa4538255
-
SHA1
75d5d62fc1c5c5c6479b4934a98a65af90460deb
-
SHA256
8d90ed9c36fbb5e2849c69d77f4d588279697da6a9e3c65769db7624abda46c6
-
SHA512
6f73d1e08678b2a6e9714975cc3fb68851556d6ddacdfc02032cf8bdf58e246616da21fb2e77e8715e2fbee8b8c6dbd7a1ef5c5d5d4b3923d9ca8fec9226670b
-
SSDEEP
1536:W7jO1TP6jquDXASiSjuR2rK5ZuN4HrzPe3mreBz+7JJLhJUmkigFxfC7cgnQ:RR6N4HrzZoy7JJLhJUmkigFxfKcgnQ
Score
7/10
Malware Config
Signatures
-
Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.
Processes:
cefbb891d3b5653d010c3f1fa4538255.elfdescription ioc process /proc/net/route /proc/net/route cefbb891d3b5653d010c3f1fa4538255.elf -
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.
Processes:
cefbb891d3b5653d010c3f1fa4538255.elfdescription ioc process /proc/net/route /proc/net/route cefbb891d3b5653d010c3f1fa4538255.elf