3a7de3d0661b89d93a8689c2be93de6b8951ed567c241c181f87bef92b64863d | Triage

Submit
Reports

Overview

overview

9

Static

static

1

3a7de3d066...3d.elf

debian-9-mips

9

Sharing

Copy URL Twitter E-mail

General

Target

3a7de3d0661b89d93a8689c2be93de6b8951ed567c241c181f87bef92b64863d.elf
Size

98KB
Sample

241018-bw9sps1epq
MD5

5ede79a293a2d103c34fd73079a59f12
SHA1

b1e0231b0612d6724f12af1dd2029278b848a6f3
SHA256

3a7de3d0661b89d93a8689c2be93de6b8951ed567c241c181f87bef92b64863d
SHA512

4c20b85399478e96a28ccc48ce05500c08a78b2f6757965d150d1dfb00793a29ef787582e6572ed5cf4f281628ff26563d0f16c52680ab0f4644aa460303a613
SSDEEP

1536:vAsXC0EriPjf3HkDGh0EQkK59VrGutrFSjD7G4EKpCoVFrlD1eoG8V:JVjOlZkQF7KpCoVFrJu8V

Score

9^/10

defense_evasion discovery

Static task

static1

Behavioral task

behavioral1

Sample

3a7de3d0661b89d93a8689c2be93de6b8951ed567c241c181f87bef92b64863d.elf

Resource

debian9-mipsbe-20240418-en

defense_evasion discovery

debian-9-mips

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  3a7de3d0661b89d93a8689c2be93de6b8951ed567c241c181f87bef92b64863d.elf
- Size
  
  98KB
- MD5
  
  5ede79a293a2d103c34fd73079a59f12
- SHA1
  
  b1e0231b0612d6724f12af1dd2029278b848a6f3
- SHA256
  
  3a7de3d0661b89d93a8689c2be93de6b8951ed567c241c181f87bef92b64863d
- SHA512
  
  4c20b85399478e96a28ccc48ce05500c08a78b2f6757965d150d1dfb00793a29ef787582e6572ed5cf4f281628ff26563d0f16c52680ab0f4644aa460303a613
- SSDEEP
  
  1536:vAsXC0EriPjf3HkDGh0EQkK59VrGutrFSjD7G4EKpCoVFrlD1eoG8V:JVjOlZkQF7KpCoVFrJu8V
Score

9^/10

defense_evasion discovery
- Contacts a large (222807) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Modifies Watchdog functionality
  Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.
  defense_evasion
- Enumerates running processes
  Discovers information about currently running processes on the system
- Writes file to system bin folder
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Network Service Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

© 2018-2025

Terms | Privacy