Overview

overview

10

Static

static

10

Aqua.arm4.elf

debian-9-armhf

7

Analysis

  • max time kernel
    148s
  • max time network
    150s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20240729-en
  • resource tags

    arch:armhfimage:debian9-armhf-20240729-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    25-12-2024 16:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Aqua.arm4.elf

  • Size

    53KB

  • MD5

    3958c221761ca5d272008476ebf74ed0

  • SHA1

    1d09e8c16d8d32b455ab6ddbedf6a13de4867dc2

  • SHA256

    a837ed078c75b99564171a23111ebca62c086f2882478e241930f10b6f4ec51b

  • SHA512

    9c68dc9d34d7c254a38efcd67066316e7801ef774e372bc28e589cf06ef6d5c58bdfbcbbcf84dfcd8f6d9e7e07d88726999eba9c00141dcb52d71c47960d2386

  • SSDEEP

    768:3NCSL8G3qe2rcp4ICUld0mHpWzhGoMZ4LMMkpvz3x1WPnMV7BylarObtvVg6I:ISgG332Wd0m4oaMv/BV7lqbtq6

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Changes its process name 1 IoCs

Processes

  • /tmp/Aqua.arm4.elf
    /tmp/Aqua.arm4.elf
    1⤵
    • Deletes itself
    • Changes its process name
    PID:669

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads