144778790d4a43a1d93dff6b660a6acb3a6d37a19e6a6f0a6bf1ef47e919648e | Triage

Analysis

max time kernel
1s
max time network
125s
platform
debian-9_armhf
resource
debian9-armhf-20221125-en
resource tags

arch:armhfimage:debian9-armhf-20221125-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
submitted
08/07/2023, 04:37

Sharing

Report Analysis Logs

General

Target

competing_su
Size

62KB
MD5

865290b56c91a7b7a187356aa4f132e3
SHA1

463e40dfd1cc18a7550cffe5c349f927bc10f5cc
SHA256

e089e300e93ab156d91ea537b1e1ae78935b6448a3ef90a916bfafe60440e051
SHA512

e14b6daf6439a2425474f5b62a44463ef215217d80783c12515a8add60ee44e94a04ea16faf8e9ece1de66bc0708e983ba6f3545ca817318f08e1020192136d7
SSDEEP

1536:Mc3CJO+rVr/2szNgc97/hA8U4jNgYNXKE8JXLbwsDNBIz:MlXJr/Zj9lAT4jNg8KbDBI

Score

3^/10

Malware Config

Signatures

Reads runtime system information 1 IoCs

Reads data from /proc virtual filesystem.

description	ioc	Process
File opened for reading	/proc/1/cmdline	competing_su

/tmp/competing_su
/tmp/competing_su
1⤵
- Reads runtime system information
PID:376

/system/bin/sh
sh
1⤵
PID:376

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads