8d90ed9c36fbb5e2849c69d77f4d588279697da6a9e3c65769db7624abda46c6

Analysis

max time kernel
0s
max time network
124s
platform
debian-9_mips
resource
debian9-mipsbe-20221111-en
resource tags

arch:mipsimage:debian9-mipsbe-20221111-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
07-04-2023 19:28

Target

cefbb891d3b5653d010c3f1fa4538255.elf
Size

118KB
MD5

cefbb891d3b5653d010c3f1fa4538255
SHA1

75d5d62fc1c5c5c6479b4934a98a65af90460deb
SHA256

8d90ed9c36fbb5e2849c69d77f4d588279697da6a9e3c65769db7624abda46c6
SHA512

6f73d1e08678b2a6e9714975cc3fb68851556d6ddacdfc02032cf8bdf58e246616da21fb2e77e8715e2fbee8b8c6dbd7a1ef5c5d5d4b3923d9ca8fec9226670b
SSDEEP

1536:W7jO1TP6jquDXASiSjuR2rK5ZuN4HrzPe3mreBz+7JJLhJUmkigFxfC7cgnQ:RR6N4HrzZoy7JJLhJUmkigFxfKcgnQ

Score

7^/10

Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.

System Network Configuration Discovery
T1016

Processes:

cefbb891d3b5653d010c3f1fa4538255.elf

description ioc process

/proc/net/route /proc/net/route cefbb891d3b5653d010c3f1fa4538255.elf
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.

System Network Configuration Discovery
T1016

Processes:

cefbb891d3b5653d010c3f1fa4538255.elf

description ioc process

/proc/net/route /proc/net/route cefbb891d3b5653d010c3f1fa4538255.elf

description	ioc	process
/proc/net/route	/proc/net/route	cefbb891d3b5653d010c3f1fa4538255.elf

description	ioc	process
/proc/net/route	/proc/net/route	cefbb891d3b5653d010c3f1fa4538255.elf

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact