deb4a36d043bce6314b666955f0092c74b9a802b763cdf4abf59cfe99550842b

Analysis

max time kernel
93s
max time network
95s
platform
debian-9_mips
resource
debian9-mipsbe-20240226-en
resource tags

arch:mipsimage:debian9-mipsbe-20240226-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
10/04/2024, 16:19

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

fb80f4dac30d0440a2a93ff7aecd2fdf.elf
Size

136KB
MD5

fb80f4dac30d0440a2a93ff7aecd2fdf
SHA1

87f66e53807947c74137b9ba7e0ceafa8e02624c
SHA256

deb4a36d043bce6314b666955f0092c74b9a802b763cdf4abf59cfe99550842b
SHA512

29e0efe71a89fa0f7baadc0c0d2a53aacbb41e6e5407894d9ae8457b9f6a3759beeec88e93ad5b29c26725a2ac64b253625eca415f2909a21a1750d97a1a4f9f
SSDEEP

1536:HHfdlkNAauP+uc2rKT6i+chnG6AC2mDs/8eQ5APs7NlB+yjsc6mvbpR4WYb4n:VaRBg6aws/AAPwBxqmzpRRYb4n

Score

6^/10

Malware Config

Signatures

Reads system routing table 1 TTPs 1 IoCs

Gets active network interfaces from /proc virtual filesystem.

System Network Configuration Discovery

T1016

description	ioc	Process
File opened for reading	/proc/net/route	fb80f4dac30d0440a2a93ff7aecd2fdf.elf

Reads system network configuration 1 TTPs 1 IoCs

Uses contents of /proc filesystem to enumerate network settings.

System Network Configuration Discovery

T1016

description	ioc	Process
File opened for reading	/proc/net/route	fb80f4dac30d0440a2a93ff7aecd2fdf.elf

/tmp/fb80f4dac30d0440a2a93ff7aecd2fdf.elf
/tmp/fb80f4dac30d0440a2a93ff7aecd2fdf.elf
1⤵
- Reads system routing table
- Reads system network configuration
PID:701

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1016

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads