efb7c3a4e5fd61c890c19f1863106ca95a95732a483f8e80c2c2fe92bfe64421

Analysis

max time kernel
0s
max time network
12s
platform
debian-9_armhf
resource
debian9-armhf-20240611-en
resource tags

arch:armhfimage:debian9-armhf-20240611-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
submitted
19/02/2025, 06:01

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

efb7c3a4e5fd61c890c19f1863106ca95a95732a483f8e80c2c2fe92bfe64421.elf
Size

139KB
MD5

9574c6e15b3cd6a99216d69a5e67098c
SHA1

508e4c6e40bbdbe55a317f658da3c572fc716513
SHA256

efb7c3a4e5fd61c890c19f1863106ca95a95732a483f8e80c2c2fe92bfe64421
SHA512

509a0df503d97d781fb4c14843fa9d343a70f44093919bcbdf69c9a113ce53c6d8834e4e99913c83f8cc572af0ce46ba427183fedb80e0fa2f7ab433e35303a5
SSDEEP

3072:nVfyQ+d+pceQGf3bssaXv2hWOiwTteFrwZoPI3njddZ4RemydQCYMhEFg:TbssaXv2hoHrVPI3LuYmydQCYMhEFg

Score

7^/10

Malware Config

Signatures

Writes DNS configuration 1 TTPs 1 IoCs

Writes data to DNS resolver config file.

Adversary-in-the-Middle

T1557

description	ioc	Process
File opened for modification	/etc/resolv.conf	efb7c3a4e5fd61c890c19f1863106ca95a95732a483f8e80c2c2fe92bfe64421.elf

Changes its process name 1 IoCs

description	pid	Process
Changes the process name, possibly in an attempt to hide itself	661	efb7c3a4e5fd61c890c19f1863106ca95a95732a483f8e80c2c2fe92bfe64421.elf

/tmp/efb7c3a4e5fd61c890c19f1863106ca95a95732a483f8e80c2c2fe92bfe64421.elf
/tmp/efb7c3a4e5fd61c890c19f1863106ca95a95732a483f8e80c2c2fe92bfe64421.elf
1⤵
- Writes DNS configuration
- Changes its process name
PID:661

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Adversary-in-the-Middle

T1557

Discovery

Lateral Movement

Collection

Adversary-in-the-Middle

T1557

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads