Analysis
-
max time kernel
145s -
max time network
150s -
platform
debian-9_mips -
resource
debian9-mipsbe-20240611-en -
resource tags
arch:mipsimage:debian9-mipsbe-20240611-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem -
submitted
02-07-2024 02:12
Behavioral task
behavioral1
Sample
f08fedd61f1fc9a611cdc429b70e07088f819220c69e524efaab85e2df9e7cf3.elf
Resource
debian9-mipsbe-20240611-en
General
-
Target
f08fedd61f1fc9a611cdc429b70e07088f819220c69e524efaab85e2df9e7cf3.elf
-
Size
209KB
-
MD5
9aa455a8e2e940b431f152a32316d539
-
SHA1
cb8d57a39b122a3f08d694dc48c254e358b4bd04
-
SHA256
f08fedd61f1fc9a611cdc429b70e07088f819220c69e524efaab85e2df9e7cf3
-
SHA512
38837a7d9046912740eed5e43d9fcf95c2ad9f45e42467a0a434f34bc9d1b003bcdd1c94a887c1d48bffcb1cf091d707f22e454a2a79550e8818871187090cfd
-
SSDEEP
3072:3XC9j6w2ZQgoYJlQeRmhDvy2uSNbtmWu+R9ask0QcYb85hRBg1cmrpy6n9Nn:3SDCzcYb85hR5mrpy6n9Nn
Malware Config
Signatures
-
Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.
Processes:
f08fedd61f1fc9a611cdc429b70e07088f819220c69e524efaab85e2df9e7cf3.elfdescription ioc process File opened for reading /proc/net/route f08fedd61f1fc9a611cdc429b70e07088f819220c69e524efaab85e2df9e7cf3.elf -
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.
Processes:
f08fedd61f1fc9a611cdc429b70e07088f819220c69e524efaab85e2df9e7cf3.elfdescription ioc process File opened for reading /proc/net/route f08fedd61f1fc9a611cdc429b70e07088f819220c69e524efaab85e2df9e7cf3.elf