Overview

overview

10

Static

static

10

c216e4f5ab...fd.elf

debian-9-mipsel

7

Analysis

  • max time kernel
    150s
  • max time network
    152s
  • platform
    debian-9_mipsel
  • resource
    debian9-mipsel-20240226-en
  • resource tags

    arch:mipselimage:debian9-mipsel-20240226-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
  • submitted
    31/12/2024, 02:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c216e4f5abc6cd3350e56637779c2367c2f4c2c00ce04a8d47920207e8e16afd.elf

  • Size

    173KB

  • MD5

    cc15cde6601a6116b55012a4568e1948

  • SHA1

    729ee122b3eaf4384df789286d9e28e89588275e

  • SHA256

    c216e4f5abc6cd3350e56637779c2367c2f4c2c00ce04a8d47920207e8e16afd

  • SHA512

    7b66f95199df2ee46760ca7e869275b7bf7fed6941dc09074806870e9582110de0abd9eaa326f8b877606a62daace39bc48be5f2ad2e27ab6260f28ac28a91da

  • SSDEEP

    3072:nKpzGQeNkSfcQqmav8SqaRVlnYz65jVt:nKYQeNYQqmeqavlg65j

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Traces itself 2 IoCs

    Traces itself to prevent debugging attempts

  • Changes its process name 1 IoCs
  • Writes file to tmp directory 1 IoCs

    Malware often drops required files in the /tmp directory.

Processes

  • /tmp/c216e4f5abc6cd3350e56637779c2367c2f4c2c00ce04a8d47920207e8e16afd.elf
    /tmp/c216e4f5abc6cd3350e56637779c2367c2f4c2c00ce04a8d47920207e8e16afd.elf
    1⤵
    • Deletes itself
    • Traces itself
    • Changes its process name
    • Writes file to tmp directory
    PID:706

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads