4478f6be2fa3dac7bdd17c60c8187aa120d25966d8ac0901de13a1e182467aa1

Analysis

max time kernel
149s
max time network
151s
platform
debian-9_mips
resource
debian9-mipsbe-20240418-en
resource tags

arch:mipsimage:debian9-mipsbe-20240418-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
13-11-2024 12:07

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

m-i.p-s.ISIS.elf
Size

131KB
MD5

9ac817bdf5192fbc64b39eb072a257b0
SHA1

43943d83e526906f0f9b455656ca7575586e9dac
SHA256

4478f6be2fa3dac7bdd17c60c8187aa120d25966d8ac0901de13a1e182467aa1
SHA512

2156b485118e8014da33f56518bdcf4ac185476f754200b7af45a23144b9a01d68e9ff3f43f8bb257c1442c8f0d742497564278c7599f076be01e252132ba274
SSDEEP

3072:jGTyrDxJWwAfr9f3yJddxUEJmTDmjOrWcpu3NJFARtRVJhGvaZqhZYiDhB/ZZ9Ba:C+nZSZwnJeUmkASFxBKvXZX

Score

6^/10

discovery

Malware Config

Signatures

Reads system routing table 1 TTPs 1 IoCs

Gets active network interfaces from /proc virtual filesystem.

discovery

Internet Connection Discovery

T1016.001

Processes:

m-i.p-s.ISIS.elf

description	ioc	Process
File opened for reading	/proc/net/route	m-i.p-s.ISIS.elf

Reads system network configuration 1 TTPs 1 IoCs

Uses contents of /proc filesystem to enumerate network settings.

discovery

Internet Connection Discovery

T1016.001

Processes:

m-i.p-s.ISIS.elf

description	ioc	Process
File opened for reading	/proc/net/route	m-i.p-s.ISIS.elf

/tmp/m-i.p-s.ISIS.elf
/tmp/m-i.p-s.ISIS.elf
1⤵
- Reads system routing table
- Reads system network configuration
PID:709

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1016

Internet Connection Discovery

T1016.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads