Overview

overview

10

Static

static

10

57ea383919...832aea

debian-9-mipsel

7

Analysis

  • max time kernel
    150s
  • max time network
    154s
  • platform
    debian-9_mipsel
  • resource
    debian9-mipsel-20231215-en
  • resource tags

    arch:mipselimage:debian9-mipsel-20231215-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
  • submitted
    19/12/2023, 23:18

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    57ea38391964ae107facb6d08a832aea

  • Size

    183KB

  • MD5

    57ea38391964ae107facb6d08a832aea

  • SHA1

    76bb611306dd9f35709f1196adcee45e0aa0c922

  • SHA256

    000709c7506b64557e8115c06065e8292056b4431eb8608bd19ad54e5c5451ac

  • SHA512

    79920d7c457b978c20075f98f5d09c8adb45b1fbc4e1dec2c14d9f291c1e108cc2b282a91969264f860d1b3ebe80e12fbdc4cbaae2ccd281b9a32ac7ba08d165

  • SSDEEP

    1536:gsufBTeTic2A8p36CKj5oyFZw4X1aOVavNBdNrf2sEs9iwA7yQ9Srldiysq+WM6Y:YJUow6O4vrZP9jA7JSrldXsq+WM6RmF

Score
7/10

Malware Config

Signatures

  • Changes its process name 1 IoCs
  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

Processes

  • /tmp/57ea38391964ae107facb6d08a832aea
    /tmp/57ea38391964ae107facb6d08a832aea
    1⤵
    • Changes its process name
    • Reads system routing table
    • Reads system network configuration
    PID:714

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads