Overview

overview

10

Static

static

10

479f59386b...e9.elf

debian-12-mipsel

7

Analysis

  • max time kernel
    151s
  • max time network
    152s
  • platform
    debian-12_mipsel
  • resource
    debian12-mipsel-20240221-en
  • resource tags

    arch:mipselimage:debian12-mipsel-20240221-enkernel:6.1.0-17-4kc-maltalocale:en-usos:debian-12-mipselsystem
  • submitted
    04/02/2025, 03:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    479f59386bb7ce53c4906d0dd1b0f249803e9850511d99af5d9c8e9d1258f5e9.elf

  • Size

    173KB

  • MD5

    155c4648ec2814337d601bc57142b54b

  • SHA1

    fd4ba315e2ec9913712e4a6dce08aab3b6c1b891

  • SHA256

    479f59386bb7ce53c4906d0dd1b0f249803e9850511d99af5d9c8e9d1258f5e9

  • SHA512

    2c8f5f874fdb3fb63cc491f137a1063c868a78614b987938470fbaf23b60f0ae83e28156f5ce8701feb0dab03083f135de4eb52209275aaf80642922510c4fe7

  • SSDEEP

    3072:nKpzGieNkSfcQqmav8SqaRVlnYz65oVt:nKYieNYQqmeqavlg65o

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Traces itself 2 IoCs

    Traces itself to prevent debugging attempts

  • Changes its process name 1 IoCs
  • Writes file to tmp directory 1 IoCs

    Malware often drops required files in the /tmp directory.

Processes

  • /tmp/479f59386bb7ce53c4906d0dd1b0f249803e9850511d99af5d9c8e9d1258f5e9.elf
    /tmp/479f59386bb7ce53c4906d0dd1b0f249803e9850511d99af5d9c8e9d1258f5e9.elf
    1⤵
    • Deletes itself
    • Traces itself
    • Changes its process name
    • Writes file to tmp directory
    PID:747

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads