Overview

overview

10

Static

static

10

727-1-0x00...ry.dmp

debian-9-mips

7

Analysis

  • max time kernel
    150s
  • max time network
    8s
  • platform
    debian-9_mips
  • resource
    debian9-mipsbe-20240611-en
  • resource tags

    arch:mipsimage:debian9-mipsbe-20240611-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
  • submitted
    25-01-2025 16:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    727-1-0x00400000-0x00451a58-memory.dmp

  • Size

    69KB

  • MD5

    870864c53da29fa82d4dd4a65f5fcc5a

  • SHA1

    5eb1d4e3178e7a632dd1beb8caa00b800e8a8bb5

  • SHA256

    dd2f9e5f3cc52ad4c602ec27ba75665a41aac69da59dcf520c204ca0439f1e0c

  • SHA512

    c27e135dbf666e3c5f154341df58735b928d04aea260c528abfb1da35ec0f2a2f6882eb811c0291d53948bee031e1a2203bd9fac215d042977dc578dd7734ae9

  • SSDEEP

    768:kZmnnogDILQHYLQHPVVMr4mgYVVMwKykNVVM6r+g/RtrVSYogDOsS5siv5XLatAD:BnN4ZH2SyOyuIq8LMEIUq+cvtpvXzqLe

Score
7/10
defense_evasiondiscovery

Malware Config

Signatures

  • Modifies Watchdog functionality 1 TTPs 2 IoCs

    Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    defense_evasion
  • Writes file to system bin folder 2 IoCs
  • Reads runtime system information 23 IoCs

    Reads data from /proc virtual filesystem.

    discovery

Processes

  • /tmp/727-1-0x00400000-0x00451a58-memory.dmp
    /tmp/727-1-0x00400000-0x00451a58-memory.dmp
    1⤵
    • Modifies Watchdog functionality
    • Writes file to system bin folder
    • Reads runtime system information
    PID:704

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads