Analysis

  • max time kernel
    149s
  • max time network
    140s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20240226-en
  • resource tags

    arch:armhfimage:debian9-armhf-20240226-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    19-04-2024 02:00

General

  • Target

    d61212c6fdd6ca3b1089639dee5089d0324195b595fb1e0b653a6f5ba9953871.elf

  • Size

    69KB

  • MD5

    7ea93bc649d53c24353af71f91554b72

  • SHA1

    72b6740c72e0106592ecb94cb55e704ebeea1672

  • SHA256

    d61212c6fdd6ca3b1089639dee5089d0324195b595fb1e0b653a6f5ba9953871

  • SHA512

    fcb52b1be4b84be5239547703a49735f8c31489d031b3c88175a565e8bc425752c88716925ef75d7c006c74ba053b95d185cbf78f49d9e01dc6d7f56d27f7141

  • SSDEEP

    1536:0JxJQuWCYBAfHJO37jLTFkH4PevN7Xj0C6cMd/s1UAOQL:0JLfi/nFkH4PAN7Xj0ndkTOy

Score
7/10

Malware Config

Signatures

  • Changes its process name 1 IoCs
  • Reads runtime system information 6 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/d61212c6fdd6ca3b1089639dee5089d0324195b595fb1e0b653a6f5ba9953871.elf
    /tmp/d61212c6fdd6ca3b1089639dee5089d0324195b595fb1e0b653a6f5ba9953871.elf
    1⤵
    • Changes its process name
    PID:639

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads