Overview

overview

10

Static

static

10

cc45b5a264...e7.elf

debian-9-armhf

6

Analysis

  • max time kernel
    150s
  • max time network
    153s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20231215-en
  • resource tags

    arch:armhfimage:debian9-armhf-20231215-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    13-02-2024 05:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cc45b5a264c58795f4fadcca36fe38ce07c47814261b0004ef88bd0e47d40ee7.elf

  • Size

    145KB

  • MD5

    c7cff05a404f4ff5fbefc6fe267ab074

  • SHA1

    7a082662d9df68513105356fef668af44985f352

  • SHA256

    cc45b5a264c58795f4fadcca36fe38ce07c47814261b0004ef88bd0e47d40ee7

  • SHA512

    87ae68279fcb3fe748b484c10f3355069a97211132c9ea5ba3d404ba45fa1482e453a68f6e1dd0f4bbba4b4e77948beabe94b0806ba27d2be0d9dd119473fcbf

  • SSDEEP

    3072:6hlLp1zWvkO0PXs/DiW1VrdF5hn8eoadVjkmOMDQ4DtsL6Qse:O7J8/Di2RF5hn8eFkmOMDQ4DtsL6Qse

Score
6/10

Malware Config

Signatures

  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

Processes

  • /tmp/cc45b5a264c58795f4fadcca36fe38ce07c47814261b0004ef88bd0e47d40ee7.elf
    /tmp/cc45b5a264c58795f4fadcca36fe38ce07c47814261b0004ef88bd0e47d40ee7.elf
    1⤵
    • Reads system routing table
    • Reads system network configuration
    PID:670

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads