2f0bcf94ec6111e22f0fce1775e2cc2a1285d8acb57c7db7b8ed44eec31a8e97 | Triage

Analysis

max time kernel
149s
max time network
152s
platform
debian-12_armhf
resource
debian12-armhf-20240729-en
resource tags

arch:armhfimage:debian12-armhf-20240729-enkernel:6.1.0-17-armmp-lpaelocale:en-usos:debian-12-armhfsystem
submitted
21-01-2025 23:27

Sharing

Report Analysis Logs

General

Target

arm7.elf
Size

122KB
MD5

e56709dda3d833347fda5a43f136a876
SHA1

69bbc9c62d74cbf42dc171be0c5f647f44c7f1db
SHA256

2f0bcf94ec6111e22f0fce1775e2cc2a1285d8acb57c7db7b8ed44eec31a8e97
SHA512

6ff91e70383ead003284007df2456665ae185e51453c3ececc8565b8a9ad0295d97caeb162adfdc1fb66d7c3c03bc73b6b7e7ef98caa7eb29aa62906130d29d1
SSDEEP

3072:JyxVFE/U9rbwyn5ypMZQw/yZ/GV+eL4M/9jjz:Jyxc/Irbwe5ypMZQ9ZS+e8M/9/z

Score

7^/10

Malware Config

Signatures

Deletes itself 1 IoCs

pid	Process
703	arm7.elf

Changes its process name 1 IoCs

description	ioc	pid	Process
Changes the process name, possibly in an attempt to hide itself	sc0rfu4lbou7	703	arm7.elf

/tmp/arm7.elf
/tmp/arm7.elf
1⤵
- Deletes itself
- Changes its process name
PID:703

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads