Analysis
-
max time kernel
124s -
max time network
126s -
platform
debian-9_armhf -
resource
debian9-armhf-20240418-en -
resource tags
-
submitted
13/10/2024, 18:28
General
-
Target
na.elf
-
Size
167KB
-
MD5
dac3eb579ee4dca5d51f0bb74d4a519c
-
SHA1
1c63b87e63f63edd047944349f71a1aa938043be
-
SHA256
baf321c3e5f72913f7e877b092e1ce56d26a00f610fab4ca5690ee1f30017420
-
SHA512
722ff540436c2afdc1c774e982c418daa7dfa2d72afec6e193e060f64fc845cc57e4c6069be1a451c7b5b30bcbc100f6eb2a4bee12d158b23107360c1b9a83b9
-
SSDEEP
3072:Bdy8WoZkeDGOvvlIAFZ3U5c0xkuQn3s5h1X7cKUmSQnNbGUBn:bZv9KBxkuQ3s5h1X7xUmSQnNbGUBn
Score
6/10
Malware Config
Signatures
-
Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.
-
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.
Processes
-
/tmp/na.elf/tmp/na.elf1⤵
- Reads system routing table
- Reads system network configuration