Analysis
-
max time kernel
116s -
max time network
122s -
platform
debian-9_mips -
resource
debian9-mipsbe-20240611-en -
resource tags
-
submitted
23/02/2025, 17:48
General
-
Target
strix.mips.elf
-
Size
209KB
-
MD5
e69673e1ed464af63a72ca3a33f58381
-
SHA1
30f2bffc4c9c06adce490c08030cad75840f0c19
-
SHA256
99e7cbe8c667889ef78c2ab6cfff9439c57b80d6bff902f2ddf7ea41f95c99ab
-
SHA512
1dbdc7ad0dd0db4b5990be3f0a1675a96a72f4140561ce9b52bff41d058c1e90ca159a22cd6f4581e55f89c222749647ee59becee5b6aa4fe23c1588eed7d94a
-
SSDEEP
3072:3XC9j6w2ZQgoYJR4GZOhL3qu2a1zleu+WRd9soUQcI7T5hEBk1cmrpy6n9Nn:3SPfTcI7T5hE1mrpy6n9Nn
Score
6/10
Malware Config
Signatures
-
Reads system routing table 1 TTPs 1 IoCs
Gets active network interfaces from /proc virtual filesystem.
-
Reads system network configuration 1 TTPs 1 IoCs
Uses contents of /proc filesystem to enumerate network settings.
-
System Network Configuration Discovery 1 TTPs 1 IoCs
Adversaries may gather information about the network configuration of a system.
Processes
-
/tmp/strix.mips.elf/tmp/strix.mips.elf1⤵
- Reads system routing table
- Reads system network configuration
- System Network Configuration Discovery