General
-
Target
62e098592f3d6467df64e3cf1d86880a74431ab9f06b96bb2b15b4b621f73836.elf
-
Size
79KB
-
Sample
241014-ng5lnatgle
-
MD5
00a9ae1db130ee9c421bda3d63acaa9e
-
SHA1
4e54df2cd570a13dcc2b9990fa3fe2623bca3ba4
-
SHA256
62e098592f3d6467df64e3cf1d86880a74431ab9f06b96bb2b15b4b621f73836
-
SHA512
a1728f4a9bcef866f9676c2f309a8615f1b08887ee9e6e0c07a6e8f91a4516175037d1988213dda34031d6c3479ab2045253c11e87b639f6e6dad14c1c4fca1d
-
SSDEEP
1536:yG9ttZx7oMi+GAUJXC6H5yNQJBg/cLrVCqbJo6zhuWWZG72CJ:yYtlQG0ydQTg/U0sWq
Static task
static1
Behavioral task
behavioral1
Sample
62e098592f3d6467df64e3cf1d86880a74431ab9f06b96bb2b15b4b621f73836.elf
Resource
debian9-mipsel-20240226-en
Malware Config
Targets
-
-
Target
62e098592f3d6467df64e3cf1d86880a74431ab9f06b96bb2b15b4b621f73836.elf
-
Size
79KB
-
MD5
00a9ae1db130ee9c421bda3d63acaa9e
-
SHA1
4e54df2cd570a13dcc2b9990fa3fe2623bca3ba4
-
SHA256
62e098592f3d6467df64e3cf1d86880a74431ab9f06b96bb2b15b4b621f73836
-
SHA512
a1728f4a9bcef866f9676c2f309a8615f1b08887ee9e6e0c07a6e8f91a4516175037d1988213dda34031d6c3479ab2045253c11e87b639f6e6dad14c1c4fca1d
-
SSDEEP
1536:yG9ttZx7oMi+GAUJXC6H5yNQJBg/cLrVCqbJo6zhuWWZG72CJ:yYtlQG0ydQTg/U0sWq
Score7/10-
Deletes system logs
Deletes log file which contains global system messages. Adversaries may delete system logs to minimize their footprint.
-
Modifies Watchdog functionality
Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
-
Renames itself
-
Reads process memory
Read the memory of a process through the /proc virtual filesystem. This can be used to steal credentials.
-