Overview

overview

10

Static

static

10

7c61d271d7...d61a65

debian-9-mipsel

9

Analysis

  • max time kernel
    151s
  • max time network
    155s
  • platform
    debian-9_mipsel
  • resource
    debian9-mipsel-20231215-en
  • resource tags

    arch:mipselimage:debian9-mipsel-20231215-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
  • submitted
    20-12-2023 02:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7c61d271d758ee15f0f78cd44ed61a65

  • Size

    138KB

  • MD5

    7c61d271d758ee15f0f78cd44ed61a65

  • SHA1

    70d7e7cad61dab743fef094bf5bc332453d2d7ce

  • SHA256

    5f7cdb36dcca3ad9fe595908e5f788f770ca81d08501f5b9280a555895ef6151

  • SHA512

    b8abd3d1ba2af10bffd5ac3396d2ab2c56af51af515187678bf477bc0acf33ac066a29ba5ec593dc3c03191307e2adb57f931e5263623b157d392d4a0bc84f26

  • SSDEEP

    1536:mqHeTo+VT/yHjIabADyOvZu4HmT/kK/mCpJ32YOWvm/bqOVBqbDBnQ:mqblADLvA11mYJm/bqOVBUDBnQ

Score
9/10
discovery

Malware Config

Signatures

  • Contacts a large (172487) amount of remote hosts 1 TTPs

    This may indicate a network scan to discover remotely running services.

    discovery
  • Creates a large amount of network flows 1 TTPs

    This may indicate a network scan to discover remotely running services.

    discovery
  • Changes its process name 1 IoCs
  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

Processes

  • /tmp/7c61d271d758ee15f0f78cd44ed61a65
    /tmp/7c61d271d758ee15f0f78cd44ed61a65
    1⤵
    • Changes its process name
    • Reads system routing table
    • Reads system network configuration
    PID:714

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads