Overview

overview

10

Static

static

10

a96c404435...3d.elf

debian-9-armhf

6

Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20240226-en
  • resource tags

    arch:armhfimage:debian9-armhf-20240226-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    10-04-2024 06:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a96c404435b48a58d0febd40ed25df3d.elf

  • Size

    105KB

  • MD5

    a96c404435b48a58d0febd40ed25df3d

  • SHA1

    ea3b689e74500057671206a9f17f306b059928b7

  • SHA256

    75d86660e39f375c9c35106f06b3e7fe66f72077998af574815ade55ce1877f4

  • SHA512

    eb41c55742f66c79de6b2c4a781ea882531a19a237192fc58d049ed82bb5683edb1e8b640baab6b34517910d378d66fd47483f553b7b1a8fbdfa3fbc725d4224

  • SSDEEP

    3072:MSY+46m1qOzssBFPPKNy+AmkZrQAhPDCXFke:06mgOzJBFPzmkZrQAhPDCXFke

Score
6/10

Malware Config

Signatures

  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

Processes

  • /tmp/a96c404435b48a58d0febd40ed25df3d.elf
    /tmp/a96c404435b48a58d0febd40ed25df3d.elf
    1⤵
    • Reads system routing table
    • Reads system network configuration
    PID:638

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads