Analysis
-
max time kernel
149s -
max time network
151s -
platform
debian-9_mips -
resource
debian9-mipsbe-20240611-en -
resource tags
arch:mipsimage:debian9-mipsbe-20240611-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem -
submitted
02-07-2024 05:54
Behavioral task
behavioral1
Sample
qkdjdjj22.mips.elf
Resource
debian9-mipsbe-20240611-en
2 signatures
150 seconds
General
-
Target
qkdjdjj22.mips.elf
-
Size
209KB
-
MD5
a6a351954b27fda91d811cdc782bc881
-
SHA1
d6f69796445dd774444ff90a36353406c4c50dfe
-
SHA256
800b22620e82d05fb5cf4594dcdb5d1fd70a14abf20d9c552b43648e895ce745
-
SHA512
e43107504bc3afc9f963052908571fce8f08dfbccb57b04ea200e212cfaccd5d696908be02eeb6433599a630ce306506b871492a202ce5ec9b36425da7739022
-
SSDEEP
3072:3XC9j6w2ZQgoYJlQeRmhDvy2uSNbtmWu+R9ask0QcYb25hRBg1cmrpy6n9Nn:3SDCzcYb25hR5mrpy6n9Nn
Score
6/10
Malware Config
Signatures
-
Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.
Processes:
qkdjdjj22.mips.elfdescription ioc process File opened for reading /proc/net/route qkdjdjj22.mips.elf -
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.
Processes:
qkdjdjj22.mips.elfdescription ioc process File opened for reading /proc/net/route qkdjdjj22.mips.elf