Analysis

  • max time kernel
    135s
  • max time network
    149s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20231221-en
  • resource tags

    arch:armhfimage:debian9-armhf-20231221-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    12-02-2024 02:12

General

  • Target

    377ff63aed8929367fe0634b55d9230df07496cd8ef75de7741c94c0a726c08c.elf

  • Size

    130KB

  • MD5

    78bb5feef87a2a83623b1d34b29a62ba

  • SHA1

    bbd7d57b2f7ea054d8ef2d4e3a74b3622f2b050e

  • SHA256

    377ff63aed8929367fe0634b55d9230df07496cd8ef75de7741c94c0a726c08c

  • SHA512

    705e9711cb15f29d2e1aceb02b00160f2ff14f8c87735948f022dce34416f0ee1902d20663640a800d67b4abcb410d25f48e627a3df4722b7c40b6905b8b3e27

  • SSDEEP

    1536:zP8g2CSJG5mIOd34g1Ab0Y1jAFrZ4V/3ETVO5bTa6MFjpChUDDl0+wywVFN+S4d5:z0FGE14V1jI45ERO5bTKhpCyevQW

Score
7/10

Malware Config

Signatures

  • Changes its process name 1 IoCs
  • Enumerates running processes

    Discovers information about currently running processes on the system

  • Reads runtime system information 64 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/377ff63aed8929367fe0634b55d9230df07496cd8ef75de7741c94c0a726c08c.elf
    /tmp/377ff63aed8929367fe0634b55d9230df07496cd8ef75de7741c94c0a726c08c.elf
    1⤵
    • Changes its process name
    PID:655

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads