0ac7558e34e699aa7e0b698aef2dc874b098a339074b0ee5341962a8a00406f1 | Triage

Analysis

max time kernel
130s
max time network
138s
platform
debian-9_mipsel
resource
debian9-mipsel-20240418-en
resource tags

arch:mipselimage:debian9-mipsel-20240418-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
submitted
20/11/2024, 05:31

Sharing

Report Analysis Logs

General

Target

mpsl.elf
Size

59KB
MD5

f8d2214692c97b86ac3ed7499cf209c6
SHA1

8a143d48be9d1923601aa75b0f9b57d4d6463363
SHA256

0ac7558e34e699aa7e0b698aef2dc874b098a339074b0ee5341962a8a00406f1
SHA512

dd4fd059ebecee156277e543b2af74681efad6dc7ca2c97efba784adf086b69a2ecdabc1210f0365563aa462a0d94150fdf6bdd74815b705a4f95cd7cceeccbc
SSDEEP

768:mxWeuXo4hFsbX/BjyMiZw/yD5h353x5zdExtAUXiheYqqvc6ODkaXibp1:UWeuXowqv8Oy353xhdEmo8b9

Score

7^/10

Malware Config

Signatures

Traces itself 2 IoCs

Traces itself to prevent debugging attempts

pid	Process
692	mpsl.elf
693	mpsl.elf

Changes its process name 1 IoCs

description	ioc	pid	Process
Changes the process name, possibly in an attempt to hide itself	roa7f1tplk	693	mpsl.elf

/tmp/mpsl.elf
/tmp/mpsl.elf
1⤵
- Traces itself
- Changes its process name
PID:692

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads