Analysis

  • max time kernel
    149s
  • max time network
    144s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20240226-en
  • resource tags

    arch:armhfimage:debian9-armhf-20240226-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    19/04/2024, 09:33

General

  • Target

    89f09e0abcab98e6a7653d7e133af65c.elf

  • Size

    138KB

  • MD5

    89f09e0abcab98e6a7653d7e133af65c

  • SHA1

    434ad3835d5ee67bb86b189ae420bf2453bb660d

  • SHA256

    d8e594bd21c8178a8f6ba983515b17692cf782c6bbb372b5fa2e2069b9a79b49

  • SHA512

    3a294b375169a6c49d88e4235174f63f6504be456d46f2d028a698aac36c7fd9a203d9ee0d1d2bc44f4ff55b4fc9c2e397a27b7adb75c79c52b1d70ea28752a1

  • SSDEEP

    1536:7FFPNs9EKkIBONTrBCZI8tGFpAckj24V1Pl+Tnvg9gWs+AWeuRelVE9wywLFg4EZ:7FFl2EtBC9sFpz4b0rvg9gvtu8exLcC

Score
7/10

Malware Config

Signatures

  • Changes its process name 1 IoCs
  • Enumerates running processes

    Discovers information about currently running processes on the system

  • Reads runtime system information 64 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/89f09e0abcab98e6a7653d7e133af65c.elf
    /tmp/89f09e0abcab98e6a7653d7e133af65c.elf
    1⤵
    • Changes its process name
    PID:661

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads