Overview

overview

10

Static

static

10

3e9068baeb...9b.elf

debian-9-armhf

6

Analysis

  • max time kernel
    140s
  • max time network
    148s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20240729-en
  • resource tags

    arch:armhfimage:debian9-armhf-20240729-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    12-11-2024 02:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3e9068baeb205f68ef471ea5f6b3409a740ea78877facbf7c3fedeb25c74cb9b.elf

  • Size

    105KB

  • MD5

    d1a563612d79dc25a38103880586291e

  • SHA1

    e78538f30ec199de8bc369cd1380c6c5a98e2ac7

  • SHA256

    3e9068baeb205f68ef471ea5f6b3409a740ea78877facbf7c3fedeb25c74cb9b

  • SHA512

    cd67d2d628ad98c67da67e03b701a5c0f275b2153b5770cbb51dbcac315889819973f01b053821022076d570ffa8b57fd0bff778377c56f07f293078193a2118

  • SSDEEP

    3072:MSY+46m1qOzssSFPPKNy+AmkZrQAhPDCXFke:06mgOzJSFPzmkZrQAhPDCXFke

Score
6/10
discovery

Malware Config

Signatures

  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

    discovery
  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

    discovery

Processes

  • /tmp/3e9068baeb205f68ef471ea5f6b3409a740ea78877facbf7c3fedeb25c74cb9b.elf
    /tmp/3e9068baeb205f68ef471ea5f6b3409a740ea78877facbf7c3fedeb25c74cb9b.elf
    1⤵
    • Reads system routing table
    • Reads system network configuration
    PID:647

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads