2ab0cd83913e0c0b674dcff0f756e18537f3a2ef77f691080cab0ee0a0025b0c

Analysis

max time kernel
1s
platform
debian-9_mips
resource
debian9-mipsbe-20240611-en
resource tags

arch:mipsimage:debian9-mipsbe-20240611-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
14/10/2024, 03:23

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Deformed-Image-Restorer-main/inc/run.py
Size

3KB
MD5

ce1ca21c69b86cd16b94d5cc5087b7f8
SHA1

0e5f9543677bda597dcd36254109639f76c65fa8
SHA256

be5ece914f6877ca8c6cd8edfc1654775d820271e6718b0a95d88e91bf712279
SHA512

b30cc7865983ca72aceb5c47e998f74519c2dc59ce3d8c67d6208b7e595554bad9f0af4e75a6584657e56abbd4178c1e29b7ae8c6667df9d668ba3a0e653c4f7

Score

3^/10

execution

Malware Config

Signatures

Command and Scripting Interpreter: Python 1 TTPs 4 IoCs

Execution via Python.

execution

Python

T1059.006

pid	Process
711	python
711	python
711	python
711	python

/tmp/Deformed-Image-Restorer-main/inc/run.py
/tmp/Deformed-Image-Restorer-main/inc/run.py
1⤵
PID:711

/usr/local/sbin/python
python /tmp/Deformed-Image-Restorer-main/inc/run.py
1⤵
- Command and Scripting Interpreter: Python
PID:711

/usr/local/bin/python
python /tmp/Deformed-Image-Restorer-main/inc/run.py
1⤵
- Command and Scripting Interpreter: Python
PID:711

/usr/sbin/python
python /tmp/Deformed-Image-Restorer-main/inc/run.py
1⤵
- Command and Scripting Interpreter: Python
PID:711

/usr/bin/python
python /tmp/Deformed-Image-Restorer-main/inc/run.py
1⤵
- Command and Scripting Interpreter: Python
PID:711

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

T1059

Python

T1059.006

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads