21b2369118c938b1fb246fce42be348fc3c549fa651a5d7e984331695e887f87

Analysis

max time kernel
141s
max time network
151s
platform
debian-9_mipsel
resource
debian9-mipsel-20231215-en
resource tags

arch:mipselimage:debian9-mipsel-20231215-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
submitted
20/12/2023, 10:26

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

a305eebf6bdc3b71edde6245470e7ca0
Size

102KB
MD5

a305eebf6bdc3b71edde6245470e7ca0
SHA1

62c8f765612a08ddf0b550c17056c916d593a11a
SHA256

21b2369118c938b1fb246fce42be348fc3c549fa651a5d7e984331695e887f87
SHA512

3ec2c53e16b449d7957a2f5962e42d5a245c0f8fa171a097ddc5a3632fdd9f89808008e27346cdf359df3dd4fc99f7071190d92c026df0fb68e48c646f16b70d
SSDEEP

1536:0GeTzI+eXiKbmTYWZMbZMPtAw7p7sXjYggpi2ymOimW+zWBSirHzai:0oc/pOZM1p7Ngg42ytimW+zWBSgHzai

Score

6^/10

Malware Config

Signatures

Reads system routing table 1 TTPs 1 IoCs

Gets active network interfaces from /proc virtual filesystem.

System Network Configuration Discovery

T1016

description	ioc	Process
File opened for reading	/proc/net/route	a305eebf6bdc3b71edde6245470e7ca0

Reads system network configuration 1 TTPs 1 IoCs

Uses contents of /proc filesystem to enumerate network settings.

System Network Configuration Discovery

T1016

description	ioc	Process
File opened for reading	/proc/net/route	a305eebf6bdc3b71edde6245470e7ca0

/tmp/a305eebf6bdc3b71edde6245470e7ca0
/tmp/a305eebf6bdc3b71edde6245470e7ca0
1⤵
- Reads system routing table
- Reads system network configuration
PID:711

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1016

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads