Overview

overview

10

Static

static

10

ivwebcda7.elf

debian-12-armhf

7

Analysis

  • max time kernel
    133s
  • max time network
    148s
  • platform
    debian-12_armhf
  • resource
    debian12-armhf-20240729-en
  • resource tags

    arch:armhfimage:debian12-armhf-20240729-enkernel:6.1.0-17-armmp-lpaelocale:en-usos:debian-12-armhfsystem
  • submitted
    02-01-2025 06:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ivwebcda7.elf

  • Size

    207KB

  • MD5

    feb836b565aa6eb913c9919f942618d8

  • SHA1

    ae58955f42ca4a0c8caefcddd36224f8fbbfb426

  • SHA256

    b8f563125ea97a9b9a74627ac8c315a962a48a76881bc6c430ece8a560a87f8e

  • SHA512

    07cdc31d8530c6c69c426b3dce300e5218d6acf52084a0ead9ba11a91af7b7764c660c7630dbae3acf4916a50221acdd90223eec02968f13ca3648c4134db4cc

  • SSDEEP

    6144:ISeqMLllawJoqhZaTBnlqSAgWRKiOHEJ2M/RAu7kLd:ICMR37hZaNnlqSf45FJv/exB

Score
7/10
discovery

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Changes its process name 1 IoCs
  • Reads runtime system information 64 IoCs

    Reads data from /proc virtual filesystem.

    discovery

Processes

  • /tmp/ivwebcda7.elf
    /tmp/ivwebcda7.elf
    1⤵
    • Deletes itself
    • Changes its process name
    • Reads runtime system information
    PID:705

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads