Overview

overview

7

Static

static

1

0eb725851e...0e7751

debian-9-mips

7

Analysis

  • max time kernel
    149s
  • max time network
    153s
  • platform
    debian-9_mips
  • resource
    debian9-mipsbe-20231215-en
  • resource tags

    arch:mipsimage:debian9-mipsbe-20231215-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
  • submitted
    19-12-2023 22:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0eb725851ed4f02343199b20180e7751

  • Size

    282KB

  • MD5

    0eb725851ed4f02343199b20180e7751

  • SHA1

    f8567bfa44e2864a46b3ed189fcfebeb19d92b63

  • SHA256

    33655169eb1bb547dca94c49f4cda14255824f383f00732e0317c85125f6089d

  • SHA512

    815fca4e9514a80aa3c121cbef4e7ea312c8c4d36294ce8a3b8778f5b40e5af148630b5b614bf8ea4119a0aade5efc8265fd58a7879604f579fd8ce377508c31

  • SSDEEP

    3072:nDY4uW9wRS4LaihiJcM7QJWbuP7cNkzGkXR+jypZMsMgAadax7oWBOjvYevbPx0R:XMZwvQ67oW1eDuR

Score
7/10

Malware Config

Signatures

  • Changes its process name 1 IoCs
  • Enumerates active TCP sockets 1 TTPs 1 IoCs

    Gets active TCP sockets from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/0eb725851ed4f02343199b20180e7751
    /tmp/0eb725851ed4f02343199b20180e7751
    1⤵
    • Changes its process name
    PID:709

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads