Overview

overview

10

Static

static

10

ngwa5.elf

debian-9-armhf

7

Analysis

  • max time kernel
    149s
  • max time network
    151s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20240611-en
  • resource tags

    arch:armhfimage:debian9-armhf-20240611-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    26-12-2024 05:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ngwa5.elf

  • Size

    138KB

  • MD5

    54935c5492f06ed2b822c448d6aaa745

  • SHA1

    b7e7e3aecde45a5e2363a8046ec3baa0abff916b

  • SHA256

    136f5ea9fdd9068d75ae5134f196f5b913d46bf564b53b2342171e3167722fa4

  • SHA512

    beda1bc9a6aa6f3351e5f185bf0b6551373b81247e41514a54a2c5d3d8eab6422f8bb7549cf40ab813e35b29b0719be06659c41512c6cfe0025f9af73a2cd788

  • SSDEEP

    1536:UjfDx+FfkzWIVEjHFmkT0PRHA7HEQ4V3c5TD0h1lGDlQ39fiE8HXluuwywMzrzV4:UjfyinVWnTSRHw4q5i1lGCNaxzN5T2

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Changes its process name 1 IoCs

Processes

  • /tmp/ngwa5.elf
    /tmp/ngwa5.elf
    1⤵
    • Deletes itself
    • Changes its process name
    PID:661

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads