eb5d7617ce5a7aa557feeecb9b4c284e27cc660341d9b201f32d35c5aa658b39

Analysis

max time kernel
149s
max time network
142s
platform
debian-9_mips
resource
debian9-mipsbe-20240611-en
resource tags

arch:mipsimage:debian9-mipsbe-20240611-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
25-11-2024 07:12

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

pXdN91.mips.elf
Size

148KB
MD5

b782a8c3e9ac5bbc1e76dbe80fa68321
SHA1

40d62822f500e16a7dc503ea01556af9b14f1121
SHA256

eb5d7617ce5a7aa557feeecb9b4c284e27cc660341d9b201f32d35c5aa658b39
SHA512

fae8849c0d8bd072bd04f86062f4200e3ab05bcd3d4e2b43ee9a257afaaff79d554b5949094f64a0212066404c792cbe597247ff046c4850b0d1e946fc089d68
SSDEEP

3072:8EBvlkr8KuZHfu6ZSEWiOHYIj33wZ6yjl/KLvj4pr3t8g1ZRR5Qo8s9VsfiHU0Ws:8yhpVsfiHUdmYSBhX48

Score

6^/10

discovery

Malware Config

Signatures

Reads system routing table 1 TTPs 1 IoCs

Gets active network interfaces from /proc virtual filesystem.

discovery

Internet Connection Discovery

T1016.001

description	ioc	Process
File opened for reading	/proc/net/route	pXdN91.mips.elf

Reads system network configuration 1 TTPs 1 IoCs

Uses contents of /proc filesystem to enumerate network settings.

discovery

Internet Connection Discovery

T1016.001

description	ioc	Process
File opened for reading	/proc/net/route	pXdN91.mips.elf

System Network Configuration Discovery 1 TTPs 1 IoCs

Adversaries may gather information about the network configuration of a system.

discovery

System Network Configuration Discovery

T1016

pid	Process
703	pXdN91.mips.elf

/tmp/pXdN91.mips.elf
/tmp/pXdN91.mips.elf
1⤵
- Reads system routing table
- Reads system network configuration
- System Network Configuration Discovery
PID:703

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1016

Internet Connection Discovery

T1016.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads