Overview

overview

10

Static

static

10

326-1-0x00...ry.dmp

debian-9-mipsel

7

Analysis

  • max time kernel
    150s
  • max time network
    148s
  • platform
    debian-9_mipsel
  • resource
    debian9-mipsel-20221125-en
  • resource tags

    arch:mipselimage:debian9-mipsel-20221125-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
  • submitted
    29/06/2023, 20:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    326-1-0x00400000-0x00452a58-memory.dmp

  • Size

    73KB

  • MD5

    338036bf13842b001d1495beca538f1c

  • SHA1

    f3b96c214951362765ac3ff210e2833dfba9063b

  • SHA256

    f3b52a4a251dee204cf50c4a7a84f9c0c68bbd96a415cb53554550bff1a8ef29

  • SHA512

    e789068d86d6c78b49f2d83434969b7a5b3b8319b3eca448afd0f99c1f22ed753971d303fa921a7f10a0e7a2999bc305f9c2e6f3cdf093983e524ac2c59db9f2

  • SSDEEP

    1536:oJPEBmW5iNWqcGTkwnXHZ84OqdZerESttP:oJPEB8NWq9hqqd0V

Score
7/10

Malware Config

Signatures

  • Modifies Watchdog functionality 1 TTPs 2 IoCs

    Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

  • Writes file to system bin folder 1 TTPs 2 IoCs
  • Reads runtime system information 6 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/326-1-0x00400000-0x00452a58-memory.dmp
    /tmp/326-1-0x00400000-0x00452a58-memory.dmp
    1⤵
      PID:327

    Network

    MITRE ATT&CK Enterprise v6

    Replay Monitor

    Loading Replay Monitor...

    Downloads