79164326a7940f25869476593db103dfd144e7155d7f005e3f51d4f5472df840

Analysis

max time kernel
145s
max time network
147s
platform
debian-9_mips
resource
debian9-mipsbe-20240418-en
resource tags

arch:mipsimage:debian9-mipsbe-20240418-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
06-12-2024 13:17

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

roze.mips.elf
Size

209KB
MD5

97d9d4346609a36db70c4732d53f530a
SHA1

a9beb573471c7a6d83dc70fa331233446f49556c
SHA256

79164326a7940f25869476593db103dfd144e7155d7f005e3f51d4f5472df840
SHA512

160deab9e2ebf460fbf264b71737a5dc509c03a61e1b75324582b6644eb3f9dec2b83ff9add8ae5ccec83910c04f1a1b4b93d22ba6c1d46d54f6d82623a1c73c
SSDEEP

3072:3XC9j6w2ZQgoYJlQelShPb+iSWhvJ6CeWRd9soUQcI7V5h2Bk1cmrpy6n9Nn:3SnfTcI7V5h21mrpy6n9Nn

Score

6^/10

discovery

Malware Config

Signatures

Reads system routing table 1 TTPs 1 IoCs

Gets active network interfaces from /proc virtual filesystem.

discovery

Internet Connection Discovery

T1016.001

description	ioc	Process
File opened for reading	/proc/net/route	roze.mips.elf

Reads system network configuration 1 TTPs 1 IoCs

Uses contents of /proc filesystem to enumerate network settings.

discovery

Internet Connection Discovery

T1016.001

description	ioc	Process
File opened for reading	/proc/net/route	roze.mips.elf

System Network Configuration Discovery 1 TTPs 1 IoCs

Adversaries may gather information about the network configuration of a system.

discovery

System Network Configuration Discovery

T1016

pid	Process
703	roze.mips.elf

/tmp/roze.mips.elf
/tmp/roze.mips.elf
1⤵
- Reads system routing table
- Reads system network configuration
- System Network Configuration Discovery
PID:703

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1016

Internet Connection Discovery

T1016.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads