Analysis
-
max time kernel
15s -
platform
debian-9_mipsel -
resource
debian9-mipsel-20240611-en -
resource tags
arch:mipselimage:debian9-mipsel-20240611-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem -
submitted
16-07-2024 21:01
Static task
static1
Behavioral task
behavioral1
Sample
code.js
Resource
android-x64-20240624-en
Behavioral task
behavioral2
Sample
code.js
Resource
android-x64-arm64-20240624-en
Behavioral task
behavioral3
Sample
code.js
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral4
Sample
code.js
Resource
debian9-armhf-20240418-en
Behavioral task
behavioral5
Sample
code.js
Resource
debian9-mipsbe-20240611-en
Behavioral task
behavioral6
Sample
code.js
Resource
debian9-mipsel-20240611-en
Behavioral task
behavioral7
Sample
code.js
Resource
ubuntu1804-amd64-20240611-en
General
-
Target
code.js
-
Size
58B
-
MD5
7e1a08225e3ef65203187c2c76d7bdc4
-
SHA1
0ff8082474cca69cdb0970c31ad65b288f9154e3
-
SHA256
f2b12146474840da84889505dd1e3a2b5cf578f45d66b5747f9133bd5b68b137
-
SHA512
85b0c0f54bd0ee62accc4e3b7c248360d6e845b6601ace77b40996972ced7db4712b68cb82147a7dc2d1cf70c427c239e66257467ff9f85c631b9d2089042b4c
Malware Config
Signatures
-
Changes its process name 4 IoCs
Processes:
description ioc pid Changes the process name, possibly in an attempt to hide itself V8 WorkerThread 705 Changes the process name, possibly in an attempt to hide itself V8 WorkerThread 707 Changes the process name, possibly in an attempt to hide itself V8 WorkerThread 709 Changes the process name, possibly in an attempt to hide itself V8 WorkerThread 712 -
Checks CPU configuration 1 TTPs 1 IoCs
Checks CPU information which indicate if the system is a virtual machine.
Processes:
nodejsdescription ioc process File opened for reading /proc/cpuinfo nodejs