Analysis
-
max time kernel
149s -
max time network
152s -
platform
debian-9_armhf -
resource
debian9-armhf-20240729-en -
resource tags
-
submitted
28-11-2024 17:43
General
-
Target
arm4.elf
-
Size
105KB
-
MD5
dfdd17823125146295896f2ffb7cc476
-
SHA1
7dd52ad6dca096423acd40f02513c04e7a3f5395
-
SHA256
3d148483dce04c383ef564b9934674d0f51d344eec017dd748194f72739d6f8d
-
SHA512
a72a1bb86dd01c901f1f20338f9d3c1ee25118d9390f34e7fe87fddc59e14b731619f5beba755d8be775c15f509c8ac5c7e455ed78423b81b65a600a43890667
-
SSDEEP
3072:MSY+46m1qOzssoFPp2HAmkZrQAhPDCXFke:06mgOzJoFPJmkZrQAhPDCXFke
Score
6/10
Malware Config
Signatures
-
Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.
-
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.
Processes
-
/tmp/arm4.elf/tmp/arm4.elf1⤵
- Reads system routing table
- Reads system network configuration