Overview

overview

7

Static

static

1

33964f063c...889b20

debian-9-mips

7

Analysis

  • max time kernel
    142s
  • max time network
    153s
  • platform
    debian-9_mips
  • resource
    debian9-mipsbe-20231215-en
  • resource tags

    arch:mipsimage:debian9-mipsbe-20231215-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
  • submitted
    19-12-2023 22:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    33964f063c8c480630410364ad889b20

  • Size

    116KB

  • MD5

    33964f063c8c480630410364ad889b20

  • SHA1

    eeb123b5f14b67ce3d78e385c8b1139c40ce8453

  • SHA256

    ff3e0b6e63759c7abe7a2e2b8bea8f9381da832a9cd1dfb515330d9dee200ca0

  • SHA512

    1ad91d0560c33dd101780a15b5e78df83d586de47a38344fb168c104e7d0bbb997515f5466106ccd8a250cec32ca3d4e2ddeee2b443df5c60b603c4bc1c15101

  • SSDEEP

    1536:/VNy7K0v/VkKnGVI8kh/NdRkVGnYQr/2rKIPFn64OoeQeul1wDSx7Ee7G+vg8:qnyiz464Ooeo11KeS8

Score
7/10

Malware Config

Signatures

  • Changes its process name 1 IoCs
  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

Processes

  • /tmp/33964f063c8c480630410364ad889b20
    /tmp/33964f063c8c480630410364ad889b20
    1⤵
    • Changes its process name
    • Reads system routing table
    • Reads system network configuration
    PID:705

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads