Analysis

  • max time kernel
    0s
  • platform
    debian-9_mips
  • resource
    debian9-mipsbe-20240729-en
  • resource tags

    arch:mipsimage:debian9-mipsbe-20240729-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
  • submitted
    28/03/2025, 12:35

General

  • Target

    resources/app/bin/index.js

  • Size

    514B

  • MD5

    2ffac93c1e0896cf98f1514f70fe8637

  • SHA1

    22fa46c684b079fae1a9921a87b3e6c63cc6e373

  • SHA256

    15cb73537b76df1b820056767dae3e8730cd91e1798bbd56e04075e8e677382b

  • SHA512

    cdc66c2d890c8edc558ffac76b46a3e63bb0b8d95e254860f18bca8c03c72fec51133fbcd7e8983219ef0a707614c9f4aed02f640d8d9afa25ff7e1fea00a4f4

Score
3/10

Malware Config

Signatures

  • Command and Scripting Interpreter: JavaScript 1 TTPs 6 IoCs

    Execution via JavaScript.

Processes

  • /tmp/resources/app/bin/index.js
    /tmp/resources/app/bin/index.js
    1⤵
      PID:816
    • /usr/local/sbin/node
      node /tmp/resources/app/bin/index.js
      1⤵
      • Command and Scripting Interpreter: JavaScript
      PID:816
    • /usr/local/bin/node
      node /tmp/resources/app/bin/index.js
      1⤵
      • Command and Scripting Interpreter: JavaScript
      PID:816
    • /usr/sbin/node
      node /tmp/resources/app/bin/index.js
      1⤵
      • Command and Scripting Interpreter: JavaScript
      PID:816
    • /usr/bin/node
      node /tmp/resources/app/bin/index.js
      1⤵
      • Command and Scripting Interpreter: JavaScript
      PID:816
    • /sbin/node
      node /tmp/resources/app/bin/index.js
      1⤵
      • Command and Scripting Interpreter: JavaScript
      PID:816
    • /bin/node
      node /tmp/resources/app/bin/index.js
      1⤵
      • Command and Scripting Interpreter: JavaScript
      PID:816

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads