Analysis
-
max time kernel
149s -
max time network
151s -
platform
debian-9_armhf -
resource
debian9-armhf-20240418-en -
resource tags
-
submitted
07-01-2025 04:07
General
-
Target
a-r.m-6.Sakura.elf
-
Size
118KB
-
MD5
fe37788544f02969c9ad949294d2cb7d
-
SHA1
1a3579a25283442ac49ee9847bbe31bb6cf2512e
-
SHA256
5d81e73d00fe727578bdd06c35116019a926d77b05a868b3667384fd5c9b75cf
-
SHA512
c1aa419f2cd3caf8800d21203dd8b688687b0eaae2cbb4dfe20df671b0d6a16ee6956b2c9739246381265d00161c3fa9ff493d2b82432c1770a48780bde810ca
-
SSDEEP
3072:ekYPUfsgnsb0J2ag/VfekDN0dn+mTQOY5NX3cn:9YPUfsgEo2a0ekDy+mTQOY5R3cn
Score
6/10
Malware Config
Signatures
-
Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.
-
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.
Processes
-
/tmp/a-r.m-6.Sakura.elf/tmp/a-r.m-6.Sakura.elf1⤵
- Reads system routing table
- Reads system network configuration