Analysis
-
max time kernel
149s -
max time network
149s -
platform
debian-9_mips -
resource
debian9-mipsbe-20240611-en -
resource tags
-
submitted
09/03/2025, 02:07
General
-
Target
2cdd44752af0c13270d77ed701b5f7e28b8b9bc7a391b815e7d34bdec556624a.elf
-
Size
169KB
-
MD5
41aa6b950403c0b60a25a7fb5d55510d
-
SHA1
6858d974dca88148f319dc9c3c3d55bb024ceb02
-
SHA256
2cdd44752af0c13270d77ed701b5f7e28b8b9bc7a391b815e7d34bdec556624a
-
SHA512
a3e06c2e0b43359c8018a5ec6012c8a6dfc3b7056e503f89f7a6cb127a58689b5c90dadd199d8dd71a5b787f30fe015b4083918881496af1e099b45d0a2b7cf2
-
SSDEEP
3072:jg57Rq7LHZwbq1YSBan1yvbysxr1uGSAY:jglRq7LHZ0Bqyy1BSAY
Score
7/10
Malware Config
Signatures
-
Deletes itself 1 IoCs
-
Traces itself 2 IoCs
Traces itself to prevent debugging attempts
-
Changes its process name 1 IoCs
-
Writes file to tmp directory 1 IoCs
Malware often drops required files in the /tmp directory.
Processes
-
/tmp/2cdd44752af0c13270d77ed701b5f7e28b8b9bc7a391b815e7d34bdec556624a.elf/tmp/2cdd44752af0c13270d77ed701b5f7e28b8b9bc7a391b815e7d34bdec556624a.elf1⤵
- Deletes itself
- Traces itself
- Changes its process name
- Writes file to tmp directory