Analysis
-
max time kernel
0s -
platform
debian-9_armhf -
resource
debian9-armhf-20240226-en -
resource tags
arch:armhfimage:debian9-armhf-20240226-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem -
submitted
10-04-2024 02:57
General
-
Target
b6a3326ccd199b9b29043a40a9268c1faa79f46c8db3af3c4dfdcc27f11403cd.elf
-
Size
31KB
-
MD5
0b5a07ee1aa215fd5e3e51532352def7
-
SHA1
58941e4a0b404eb34e865e66c23bb12af91e3dde
-
SHA256
b6a3326ccd199b9b29043a40a9268c1faa79f46c8db3af3c4dfdcc27f11403cd
-
SHA512
297538865bc9c5ecc2bebfdb8b40070a9bccaba01df750d84fde7d2e25ca733807e2416b153f29588e497a25e95854896da934ac39049e10a5d8de8a94730742
-
SSDEEP
768:n93GjR5EMWYFF/pDTxHKYSLO/R6wd12Xi3+KaR3nIpSWZglNF/9q3UELdP:n93GjIMdT/RRK65X2XQ+1tnjFlmLF
Malware Config
Extracted
Family
mirai
Botnet
SORA
Signatures
-
Reads runtime system information 1 IoCs
Reads data from /proc virtual filesystem.
Processes:
b6a3326ccd199b9b29043a40a9268c1faa79f46c8db3af3c4dfdcc27f11403cd.elfdescription ioc process File opened for reading /proc/self/exe b6a3326ccd199b9b29043a40a9268c1faa79f46c8db3af3c4dfdcc27f11403cd.elf
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/645-1-0x00008000-0x0002daa0-memory.dmp