Analysis
-
max time kernel
16s -
platform
debian-9_mipsel -
resource
debian9-mipsel-20240611-en -
resource tags
arch:mipselimage:debian9-mipsel-20240611-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem -
submitted
01-09-2024 01:44
Static task
static1
Behavioral task
behavioral1
Sample
trigger.js
Resource
android-x64-20240624-en
Behavioral task
behavioral2
Sample
trigger.js
Resource
android-x64-arm64-20240624-en
Behavioral task
behavioral3
Sample
trigger.js
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral4
Sample
trigger.js
Resource
debian9-armhf-20240418-en
Behavioral task
behavioral5
Sample
trigger.js
Resource
debian9-mipsbe-20240611-en
Behavioral task
behavioral6
Sample
trigger.js
Resource
debian9-mipsel-20240611-en
Behavioral task
behavioral7
Sample
trigger.js
Resource
ubuntu1804-amd64-20240611-en
General
-
Target
trigger.js
-
Size
51B
-
MD5
0b585aca7c33247286fb79721b52da01
-
SHA1
11e99f6042978335718de9272a194fa874bb0c47
-
SHA256
a035aa5197d48d4c42a4ec563f916e8dc9abbe108a1e1e93a9577a42424cd70f
-
SHA512
0f7dabc05c4ad83d9dbf297af8d603836ba51aa4b9ca407fbca7364df227d57c0fa22412a0d7cf213d9e5e7305f53d2bbdd7e687f9cc94cd9263d445079284fe
Malware Config
Signatures
-
Changes its process name 4 IoCs
description ioc pid Changes the process name, possibly in an attempt to hide itself V8 WorkerThread 1977 Changes the process name, possibly in an attempt to hide itself V8 WorkerThread 1978 Changes the process name, possibly in an attempt to hide itself V8 WorkerThread 1979 Changes the process name, possibly in an attempt to hide itself V8 WorkerThread 1980 -
Checks CPU configuration 1 TTPs 1 IoCs
Checks CPU information which indicate if the system is a virtual machine.
description ioc Process File opened for reading /proc/cpuinfo nodejs