Analysis

  • max time kernel
    150s
  • max time network
    155s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20240611-en
  • resource tags

    arch:armhfimage:debian9-armhf-20240611-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    23-12-2024 02:24

General

  • Target

    e962f5a76d3f3c9915b92be6650abeb7c4b0d0761f8a2b605c2c1fe17131df3a.elf

  • Size

    130KB

  • MD5

    3a99001114e7f0bf811569a8323f18a4

  • SHA1

    5075e2fd9da526d468ae3c97b224153944165ae2

  • SHA256

    e962f5a76d3f3c9915b92be6650abeb7c4b0d0761f8a2b605c2c1fe17131df3a

  • SHA512

    353f3f98dc8f93d6a64356331ea30efb4ee1293e83ce4f7923202cebdb41f3fc695219765161cd940ff182997ed66d6e96976b80098eaafa84d93d31f727f086

  • SSDEEP

    1536:LP8g2CSJG5mIOd34o1AV0Y1jAFrZ4V/3ETVONvva2MxjpChoDTl0bwywVFN+e4J8:L0FGM1eV1jI45ERONvvmlpCe77QK

Score
6/10

Malware Config

Signatures

  • Enumerates running processes

    Discovers information about currently running processes on the system

  • Changes its process name 1 IoCs
  • Reads runtime system information 64 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/e962f5a76d3f3c9915b92be6650abeb7c4b0d0761f8a2b605c2c1fe17131df3a.elf
    /tmp/e962f5a76d3f3c9915b92be6650abeb7c4b0d0761f8a2b605c2c1fe17131df3a.elf
    1⤵
    • Changes its process name
    • Reads runtime system information
    PID:658

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads