55535e030845f8b36d26196a2445c0d025e5a6c244067e586b504a297036249c

Analysis

max time kernel
149s
max time network
155s
platform
debian-9_mips
resource
debian9-mipsbe-20240611-en
resource tags

arch:mipsimage:debian9-mipsbe-20240611-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
16-12-2024 11:23

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

mips.elf
Size

123KB
MD5

bfca67d4779f0ef659e34fc884c0a1b2
SHA1

b4ada345e880bc8c76001eb2200ebafcc204fc3d
SHA256

55535e030845f8b36d26196a2445c0d025e5a6c244067e586b504a297036249c
SHA512

63351ceb2f62138948cba7df6d7c2029240855ee47e8b55b4943d0f93d03e59126744de2be3064c1facaafc2e0b679ad410f0b6c705dea2abfea7718a1fb7b5b
SSDEEP

1536:g7je1TYGq+f+A02rKXzeve1eTe8p2rKXIeum9Y0GAzQj1l72HBe7ERLWfRZrmW+i:/a1UW0MZQHfB6RZrmW+IFB1Dt1hR/

Score

6^/10

discovery

Malware Config

Signatures

Reads system routing table 1 TTPs 1 IoCs

Gets active network interfaces from /proc virtual filesystem.

discovery

Internet Connection Discovery

T1016.001

description	ioc	Process
File opened for reading	/proc/net/route	mips.elf

Reads system network configuration 1 TTPs 1 IoCs

Uses contents of /proc filesystem to enumerate network settings.

discovery

Internet Connection Discovery

T1016.001

description	ioc	Process
File opened for reading	/proc/net/route	mips.elf

System Network Configuration Discovery 1 TTPs 1 IoCs

Adversaries may gather information about the network configuration of a system.

discovery

System Network Configuration Discovery

T1016

pid	Process
704	mips.elf

/tmp/mips.elf
/tmp/mips.elf
1⤵
- Reads system routing table
- Reads system network configuration
- System Network Configuration Discovery
PID:704

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1016

Internet Connection Discovery

T1016.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads