Analysis

  • max time kernel
    150s
  • max time network
    149s
  • platform
    debian-12_armhf
  • resource
    debian12-armhf-20240418-en
  • resource tags

    arch:armhfimage:debian12-armhf-20240418-enkernel:6.1.0-17-armmp-lpaelocale:en-usos:debian-12-armhfsystem
  • submitted
    19-12-2024 03:45

General

  • Target

    b3de3366496648bc2020eaa49eae23354cf499fc846c5b3f479ea025ff34a4a3.elf

  • Size

    180KB

  • MD5

    c0f6cac3e24b52c3e8eccdbb130fccec

  • SHA1

    a7f21a56f8aa321efaa76ef521364d4f11b22ed1

  • SHA256

    b3de3366496648bc2020eaa49eae23354cf499fc846c5b3f479ea025ff34a4a3

  • SHA512

    ead0be42a8862ddef2063136ac0d0f8e55e53527f46f57340461fdf378327446dd22346b3a6a8497e9d6b7e889aeebaebb3076bd4aba27dbace547a6e8a181b9

  • SSDEEP

    3072:5UStdNRma1W9YHk9ah/QqXFgwakY7mo6nx/YpEoGM/RhkwLTNN:qSnNN1W6E9ah/Qq1gB2o2x/yJGM/Rhku

Score
6/10

Malware Config

Signatures

  • Enumerates running processes

    Discovers information about currently running processes on the system

  • Changes its process name 1 IoCs
  • Reads runtime system information 64 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/b3de3366496648bc2020eaa49eae23354cf499fc846c5b3f479ea025ff34a4a3.elf
    /tmp/b3de3366496648bc2020eaa49eae23354cf499fc846c5b3f479ea025ff34a4a3.elf
    1⤵
    • Changes its process name
    • Reads runtime system information
    PID:705

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads