95d8595a904ad53a69d15d98c2b210051bb7d0778078049134982ea0bc8b5412

Analysis

max time kernel
147s
max time network
148s
platform
debian-9_mips
resource
debian9-mipsbe-20240729-en
resource tags

arch:mipsimage:debian9-mipsbe-20240729-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
01-12-2024 13:22

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

snype.mips.elf
Size

106KB
MD5

ecab3847aa448642eff6447b5ff7cd57
SHA1

164813fa467633bae17c794bed4a6a0aee03b2b3
SHA256

95d8595a904ad53a69d15d98c2b210051bb7d0778078049134982ea0bc8b5412
SHA512

4283cc89c691f1d07f3c6ad197c6f9633a01e40ec450184ac29479717fe057ae534fff71e3c3f146381d4f3f71d6d3504e943cd896cf9d4deadd1879774e0c71
SSDEEP

1536:27j+1Tohq+XZ6NDmGf/Yo7exVXMeMNeUdPIUmkiIF8iCKrmne:hK4f/YrceMrPIUmkiIF8iPrmne

Score

6^/10

discovery

Malware Config

Signatures

Reads system routing table 1 TTPs 1 IoCs

Gets active network interfaces from /proc virtual filesystem.

discovery

Internet Connection Discovery

T1016.001

description	ioc	Process
File opened for reading	/proc/net/route	snype.mips.elf

Reads system network configuration 1 TTPs 1 IoCs

Uses contents of /proc filesystem to enumerate network settings.

discovery

Internet Connection Discovery

T1016.001

description	ioc	Process
File opened for reading	/proc/net/route	snype.mips.elf

System Network Configuration Discovery 1 TTPs 1 IoCs

Adversaries may gather information about the network configuration of a system.

discovery

System Network Configuration Discovery

T1016

pid	Process
700	snype.mips.elf

/tmp/snype.mips.elf
/tmp/snype.mips.elf
1⤵
- Reads system routing table
- Reads system network configuration
- System Network Configuration Discovery
PID:700

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1016

Internet Connection Discovery

T1016.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads