Analysis
-
max time kernel
9s -
platform
debian-9_mipsel -
resource
debian9-mipsel-20240418-en -
resource tags
arch:mipselimage:debian9-mipsel-20240418-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem -
submitted
27-06-2024 17:51
Static task
static1
Behavioral task
behavioral1
Sample
run.js
Resource
android-x64-20240624-en
Behavioral task
behavioral2
Sample
run.js
Resource
android-x64-arm64-20240624-en
Behavioral task
behavioral3
Sample
run.js
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral4
Sample
run.js
Resource
debian9-armhf-20240418-en
Behavioral task
behavioral5
Sample
run.js
Resource
debian9-mipsbe-20240611-en
Behavioral task
behavioral6
Sample
run.js
Resource
debian9-mipsel-20240418-en
Behavioral task
behavioral7
Sample
run.js
Resource
ubuntu1804-amd64-20240611-en
General
-
Target
run.js
-
Size
47B
-
MD5
37a379cc1cf221ee2ef6b8f82ccb9d8b
-
SHA1
e92cdf178f30bbe11465f5af9278995c8ad6efd4
-
SHA256
fc691ff55990120fbace5b1df7e363903a5eb2d09f8e09d0a65615c6e150c8d9
-
SHA512
fb38868c3463363eaab81c4bbb20a8f6ac6c969c79e10e4ed47f0ee21ae7e9ffea3b24a08bad6afb264f1dd8aab59e97bb673d3e4d443c0e39b2facd60402672
Malware Config
Signatures
-
Changes its process name 4 IoCs
Processes:
description ioc pid Changes the process name, possibly in an attempt to hide itself V8 WorkerThread 719 Changes the process name, possibly in an attempt to hide itself V8 WorkerThread 721 Changes the process name, possibly in an attempt to hide itself V8 WorkerThread 724 Changes the process name, possibly in an attempt to hide itself V8 WorkerThread 725 -
Checks CPU configuration 1 TTPs 1 IoCs
Checks CPU information which indicate if the system is a virtual machine.
Processes:
nodejsdescription ioc process File opened for reading /proc/cpuinfo nodejs