2bca0cf5279e115a3c254cad4f2c0d286c820b3964ec3121489918d4617f102d

Analysis

max time kernel
147s
max time network
150s
platform
debian-9_mips
resource
debian9-mipsbe-20240611-en
resource tags

arch:mipsimage:debian9-mipsbe-20240611-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
10-11-2024 18:18

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

shellv.mips.elf
Size

148KB
MD5

ebb1d0c2518465c0883e6d52a83f0dfb
SHA1

df01179b763582e6f25c8760aaa3518f6a1de4cf
SHA256

2bca0cf5279e115a3c254cad4f2c0d286c820b3964ec3121489918d4617f102d
SHA512

dd40e180363875d35609dd311257b5711e316ff2a73e279481b6706ae54ce594e6dcca35107351310d64f728f621c08f5ef0c0f08ce655494fcd8964b26f7fb5
SSDEEP

1536:mVNs7K397V+nT57Abf6l6T6B6v6N6/6AePe1ebeZe5/s18c2rKA49xXAQTI/e0hD:vMQhWTXAQT4N+Fj/ImlWs4zWfOodW

Score

4^/10

discovery

Malware Config

Signatures

Changes its process name 1 IoCs

Processes:

shellv.mips.elf

description	pid	Process
Changes the process name, possibly in an attempt to hide itself	702	shellv.mips.elf

System Network Configuration Discovery 1 TTPs 1 IoCs

Adversaries may gather information about the network configuration of a system.

discovery

System Network Configuration Discovery

T1016

Processes:

shellv.mips.elf

pid	Process
702	shellv.mips.elf

/tmp/shellv.mips.elf
/tmp/shellv.mips.elf
1⤵
- Changes its process name
- System Network Configuration Discovery
PID:702

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1016

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads