Analysis
-
max time kernel
0s -
platform
debian-9_armhf -
resource
debian9-armhf-20240226-en -
resource tags
arch:armhfimage:debian9-armhf-20240226-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem -
submitted
13-04-2024 14:04
General
-
Target
9930d401dc1919aaab79abe570dffd94.elf
-
Size
50KB
-
MD5
9930d401dc1919aaab79abe570dffd94
-
SHA1
fa5470f2c0061cb7d987a40600a274e1fe5ca494
-
SHA256
de7d940e26682ee360cc2632bbe5992906ce4a7217396f170831428257229567
-
SHA512
b70398c5a467071c3d234c9b138f01b979ca6ed064dec3408c50b6b7b99265a952042b6c53740ce11437256c30c6e74a9b7c3b5e69fdfbc4160812ec08cafb5a
-
SSDEEP
1536:ICoqsGR4eB3g0Vmh1IxIpC8J0L9VE8amFZP7R3i:loqs2Twh6P8J0LJ9ZP7R3i
Malware Config
Extracted
Family
mirai
Botnet
SORA
Signatures
-
Reads runtime system information 1 IoCs
Reads data from /proc virtual filesystem.
Processes:
9930d401dc1919aaab79abe570dffd94.elfdescription ioc process File opened for reading /proc/self/exe 9930d401dc1919aaab79abe570dffd94.elf
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/650-1-0x00008000-0x00029730-memory.dmp