Analysis
-
max time kernel
148s -
max time network
159s -
platform
debian-9_armhf -
resource
debian9-armhf-20231215-en -
resource tags
-
submitted
26-12-2023 07:57
General
-
Target
5de59abe1ed4b51167d20b10669a8ea2
-
Size
65KB
-
MD5
5de59abe1ed4b51167d20b10669a8ea2
-
SHA1
69a67589466f02fa9d379391bb27edc7e26c6968
-
SHA256
fa33815e4a449346bc2d612f917f2e39cd634dd6dec1b327a63d38412eb43d37
-
SHA512
24c7f100e5ce1445bb93e1bbd187552a0412df51443cc33a84863ce5e465d4660446bb53e671b0dda0fac3a6c159ff23b2fadc9af5acb0182f7d444c694e4f44
-
SSDEEP
1536:XIyCy8PnOuKLzrfzWvdgV/2C69VXkOP6rvm/:3SG3/rfFS9Vcm
Score
6/10
Malware Config
Signatures
-
Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.
-
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.
Processes
-
/tmp/5de59abe1ed4b51167d20b10669a8ea2/tmp/5de59abe1ed4b51167d20b10669a8ea21⤵
- Reads system routing table
- Reads system network configuration