Overview

overview

10

Static

static

10

739-1-0x00...ry.dmp

debian-9-mips

7

Analysis

  • max time kernel
    149s
  • max time network
    3s
  • platform
    debian-9_mips
  • resource
    debian9-mipsbe-20240611-en
  • resource tags

    arch:mipsimage:debian9-mipsbe-20240611-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
  • submitted
    27-12-2024 02:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    739-1-0x00400000-0x00451a58-memory.dmp

  • Size

    69KB

  • MD5

    b3bb642a4376c7144e42f9171c958079

  • SHA1

    f0d6ee4bf3779e4e1b8588c67a1c2f172984725a

  • SHA256

    c0faf074d89d182763168ce564434997f4e89740c43e0f6e18a7fa8f0403f0d0

  • SHA512

    c54acbe0207dd5bb039d3a3e5e86cdafa366ec7c61d4753aa47f59ac91b473dfd4757864b93f1423b998698bd2c67c2c93f476c1ec7aa1d9883fb8d9527f8fa3

  • SSDEEP

    768:kZmnnogDILQHYLQHPVVMr4mgYVVMwKykNVVM6r+g/RtrVSYogDOsS5siv5XLatAZ:BnN4ZH2SyOyuIq8LMEIUq+cvtpvXz8Le

Score
7/10
defense_evasiondiscovery

Malware Config

Signatures

  • Modifies Watchdog functionality 1 TTPs 2 IoCs

    Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    defense_evasion
  • Writes file to system bin folder 2 IoCs
  • Reads runtime system information 21 IoCs

    Reads data from /proc virtual filesystem.

    discovery

Processes

  • /tmp/739-1-0x00400000-0x00451a58-memory.dmp
    /tmp/739-1-0x00400000-0x00451a58-memory.dmp
    1⤵
    • Modifies Watchdog functionality
    • Writes file to system bin folder
    • Reads runtime system information
    PID:710

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads