Analysis
-
max time kernel
143s -
max time network
146s -
platform
debian-9_mipsel -
resource
debian9-mipsel-20231215-en -
resource tags
-
submitted
19-12-2023 22:35
General
-
Target
16b84593012a80f1f2b95190ca905f3e
-
Size
58KB
-
MD5
16b84593012a80f1f2b95190ca905f3e
-
SHA1
8d638dc0e361ceca195b1f754e42c4ff7c3094af
-
SHA256
75a81269e9149cc1530c53bd1581e0f669f4834402cbe87782815bad4a255d07
-
SHA512
9b6833a7a01bb4160c344ddd359fcbb5d8bd2a1b53acbab36d3e2339f91fd1ca78b1bf6dde939550a48df9b4f6beab4b1b9edd3e7c1e46dd8c4cd8149f14b2c4
-
SSDEEP
768:BmYVdwCJg+tLF4WzDdfZ6Nf9Ye0v2FOTTGbw8uwDnUBhZEX/jXivb2ekekn3aXP9:BmYIYF47Kxv2FOhCU3ZEXUb2Jpn3ao
Score
7/10
Malware Config
Signatures
-
Changes its process name 1 IoCs
-
Deletes itself 1 IoCs
-
Traces itself 2 IoCs
Traces itself to prevent debugging attempts
-
Unexpected DNS network traffic destination 13 IoCs
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
Processes
-
/tmp/16b84593012a80f1f2b95190ca905f3e/tmp/16b84593012a80f1f2b95190ca905f3e1⤵
- Deletes itself
- Traces itself