Analysis

  • max time kernel
    14s
  • platform
    debian-9_mips
  • resource
    debian9-mipsbe-20240611-en
  • resource tags

    arch:mipsimage:debian9-mipsbe-20240611-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
  • submitted
    27/10/2024, 21:52

General

  • Target

    Linux.BotenaGo.js

  • Size

    96KB

  • MD5

    f2d2cd251e1517ddde728b2a2e32c86c

  • SHA1

    216fc19d7a7fc19bbabffea2e0cfd45e252359a1

  • SHA256

    354e25b8537255b9ec4bf63c0cb833d6c7e8e4bb7518c9c11f8882e692fe446f

  • SHA512

    2164a502213287bc329cf86f0f5f1a986e896b9b7d46ae01bba3090b304084f157658257185f15bc61dc7c0db859257fb05844fa688cc997a3a532a7795e71f6

  • SSDEEP

    1536:pXYnXsje+9sKmKiUaXIDobSZLloiUFTyKRn2N3wjLHDzSRVk2Jr0jeS:p6S9loBTyK5H6dJAaS

Score
4/10

Malware Config

Signatures

  • Changes its process name 4 IoCs
  • Checks CPU configuration 1 TTPs 1 IoCs

    Checks CPU information which indicate if the system is a virtual machine.

Processes

  • /usr/bin/nodejs
    nodejs /tmp/Linux.BotenaGo.js
    1⤵
    • Changes its process name
    • Checks CPU configuration
    PID:707

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads