Overview

overview

10

Static

static

10

8488c0e447...75.elf

debian-12-mipsel

6

Analysis

  • max time kernel
    122s
  • max time network
    149s
  • platform
    debian-12_mipsel
  • resource
    debian12-mipsel-20240221-en
  • resource tags

    arch:mipselimage:debian12-mipsel-20240221-enkernel:6.1.0-17-4kc-maltalocale:en-usos:debian-12-mipselsystem
  • submitted
    08-12-2024 02:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8488c0e447428e855fa8376ea2b5e17852f6c399a2c92eabcc97823369d27e75.elf

  • Size

    201KB

  • MD5

    941227e2b497f67925f5796f90257408

  • SHA1

    6fd377cd9c9e29f14030c7c31918d203001f2a52

  • SHA256

    8488c0e447428e855fa8376ea2b5e17852f6c399a2c92eabcc97823369d27e75

  • SHA512

    8fd90750da8b197a0ce6b85b0811add8289d0f86dfd9e602bc49fad5c428c5c4a8a7130908c74b2e1b4bbd4813ce864a892bde270dc8ca11d2eb303c43dcae56

  • SSDEEP

    3072:3+k8r/1/SvFbweetJ8add9QzhsQZSL2XjWmQR22bvxZ:3+Rr/1/EPetJ8addQlXWmQR2mvxZ

Score
6/10
discovery

Malware Config

Signatures

  • Reads system routing table 1 TTPs 1 IoCs

    Gets active network interfaces from /proc virtual filesystem.

    discovery
  • Changes its process name 1 IoCs
  • Reads system network configuration 1 TTPs 1 IoCs

    Uses contents of /proc filesystem to enumerate network settings.

    discovery

Processes

  • /tmp/8488c0e447428e855fa8376ea2b5e17852f6c399a2c92eabcc97823369d27e75.elf
    /tmp/8488c0e447428e855fa8376ea2b5e17852f6c399a2c92eabcc97823369d27e75.elf
    1⤵
    • Reads system routing table
    • Changes its process name
    • Reads system network configuration
    PID:742

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads