Analysis
-
max time kernel
149s -
max time network
165s -
platform
debian-9_armhf -
resource
debian9-armhf-20240611-en -
resource tags
-
submitted
13-11-2024 18:27
General
-
Target
a-r.m-6.ISIS.elf
-
Size
124KB
-
MD5
5e47686bec1c0c11ff3352d66552edf1
-
SHA1
ef7c26f1a0562f915fed9d5a15bf0c0093039402
-
SHA256
315d24584e74088b5d651e260d75e871d99c5507ff693ab3a22fb99fd0d3e50e
-
SHA512
bf0de9c121793b4c9267b8cb7ea7fddfa9568e78f247146eac868b22f1e0371728536905a883d00d5e84f890207a9e7cdecdd500f6b3537fd662d1f46cf8fc16
-
SSDEEP
3072:odiqauNU2VS2BZQdpApDdy/wG6kiA5+ZmTQOIsXAqE:0iqauNU2EpApDsZ+ZmTQOICAqE
Score
6/10
Malware Config
Signatures
-
Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.
-
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.
Processes
-
/tmp/a-r.m-6.ISIS.elf/tmp/a-r.m-6.ISIS.elf1⤵
- Reads system routing table
- Reads system network configuration