09b543c8b2c72e070716802d48686208d16054258964c1b1e15db819b123d092

Analysis

max time kernel
149s
max time network
2s
platform
debian-9_mips
resource
debian9-mipsbe-20240729-en
resource tags

arch:mipsimage:debian9-mipsbe-20240729-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
19/02/2025, 02:09

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

09b543c8b2c72e070716802d48686208d16054258964c1b1e15db819b123d092.elf
Size

150KB
MD5

1436c169550ade43b1aaaa4cb9d705de
SHA1

f43f76d7c9f4885edc6698153669baec6400c25a
SHA256

09b543c8b2c72e070716802d48686208d16054258964c1b1e15db819b123d092
SHA512

64ecdfc4df41090d607a5d963d660e7c5b1dd3047b6774f1630af8072f7e3045fcfa1363a85e03cca4387483a647868d362c630eddf7ed5367125ad50c4204d5
SSDEEP

3072:amYIFgYfDIwXShaQGXZvURxuZq+1uPNd5R:v7b8t9GJURxuZq+1uPNd5R

Score

7^/10

Malware Config

Signatures

Writes DNS configuration 1 TTPs 1 IoCs

Writes data to DNS resolver config file.

Adversary-in-the-Middle

T1557

description	ioc	Process
File opened for modification	/etc/resolv.conf	09b543c8b2c72e070716802d48686208d16054258964c1b1e15db819b123d092.elf

Changes its process name 1 IoCs

description	pid	Process
Changes the process name, possibly in an attempt to hide itself	719	09b543c8b2c72e070716802d48686208d16054258964c1b1e15db819b123d092.elf

/tmp/09b543c8b2c72e070716802d48686208d16054258964c1b1e15db819b123d092.elf
/tmp/09b543c8b2c72e070716802d48686208d16054258964c1b1e15db819b123d092.elf
1⤵
- Writes DNS configuration
- Changes its process name
PID:719

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Adversary-in-the-Middle

T1557

Discovery

Lateral Movement

Collection

Adversary-in-the-Middle

T1557

Command and Control

Exfiltration

Impact

Windows 7 deprecation

Loading Replay Monitor...

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads