Overview

overview

10

Static

static

10

744-1-0x00...ry.dmp

debian-9-mipsel

7

Analysis

  • max time kernel
    150s
  • max time network
    35s
  • platform
    debian-9_mipsel
  • resource
    debian9-mipsel-20240729-en
  • resource tags

    arch:mipselimage:debian9-mipsel-20240729-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
  • submitted
    27-12-2024 02:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    744-1-0x00400000-0x00452a58-memory.dmp

  • Size

    73KB

  • MD5

    82ae45be4457bb0e3dd1a2180e22c4e2

  • SHA1

    f37c946643b25e685c6a52555fd59e6d8894d645

  • SHA256

    4f0a529c1623e3cc07d38973ad8db4b3f3b2b3400ab958b1d4b43f088405430b

  • SHA512

    9d23cf047c4bfffe5d1aff1961a59605b4ac52f5457dfec9e323520317640bff46d39d4ae455b0a96630669cd3e667583c9b5b669b7f6322fa678ca6c817abec

  • SSDEEP

    1536:oJPEBmW5iNWqcGTkwnXHZ84OqdZerEStpP:oJPEB8NWq9hqqd0R

Score
7/10
defense_evasiondiscovery

Malware Config

Signatures

  • Modifies Watchdog functionality 1 TTPs 2 IoCs

    Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    defense_evasion
  • Writes file to system bin folder 2 IoCs
  • Reads runtime system information 21 IoCs

    Reads data from /proc virtual filesystem.

    discovery

Processes

  • /tmp/744-1-0x00400000-0x00452a58-memory.dmp
    /tmp/744-1-0x00400000-0x00452a58-memory.dmp
    1⤵
    • Modifies Watchdog functionality
    • Writes file to system bin folder
    • Reads runtime system information
    PID:710

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads