Overview

overview

10

Static

static

10

njvwa4.elf

debian-9-armhf

7

Analysis

  • max time kernel
    149s
  • max time network
    145s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20240611-en
  • resource tags

    arch:armhfimage:debian9-armhf-20240611-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    26-12-2024 02:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    njvwa4.elf

  • Size

    142KB

  • MD5

    c3f85618d0ca2cf5079fd5a2d4b3ad90

  • SHA1

    da8818a04c09611711b01a4077654136728d0d08

  • SHA256

    c6584786641c09b602c19a28e0e041392bbacf8dfaefec720b7bc1b57bc825b5

  • SHA512

    5dfa60dc3f5f4b8c0e5b588abc5e3e803699174ceff811b2331eecddef0e774d3276fad0dd7fb5bcd11da0d4787296b5c6e5e133d2fb7a0e7135d9f1bac11e60

  • SSDEEP

    1536:IH9LjqmPiqn0+52kctiGBuAEzML4VPYVTz+NqxR5Ak9DKyMlUfwywlucS6HhZwNk:IH9Iq0BtdBu/U4OV2NqFx59USOT2

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Changes its process name 1 IoCs

Processes

  • /tmp/njvwa4.elf
    /tmp/njvwa4.elf
    1⤵
    • Deletes itself
    • Changes its process name
    PID:658

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads