75e78c307909080e3122089e55e47f2f5a13fa68ef6dbdd3262331bc0979aeb9

Analysis

max time kernel
107s
max time network
109s
platform
debian-9_mips
resource
debian9-mipsbe-20240611-en
resource tags

arch:mipsimage:debian9-mipsbe-20240611-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
09/04/2025, 23:34

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

m-i.p-s.ISIS.elf
Size

131KB
MD5

fab755241b269814f3b8a4a2246cdc4f
SHA1

9d857eddd2962c3f4851b3da2a2aa06c76513d39
SHA256

75e78c307909080e3122089e55e47f2f5a13fa68ef6dbdd3262331bc0979aeb9
SHA512

6718de2aebc1cb227cae202169c97633a89c06c1f71333b0ab346b32af6826d15023ad3f7d13c86cf7fe6216bb420ecde1439b8770924d39b16091444053f0d9
SSDEEP

3072:LO7yzLxh+44HDtHnah9qx8Ux27z+zGb+sRevdR1IhFJthZO/S5h8HQCDhBfZ4A8M:KrnZe5G32uUmkASFxBKvXZX

Score

6^/10

discovery

Malware Config

Signatures

Reads system routing table 1 TTPs 1 IoCs

Gets active network interfaces from /proc virtual filesystem.

discovery

Internet Connection Discovery

T1016.001

description	ioc	Process
File opened for reading	/proc/net/route	m-i.p-s.ISIS.elf

Reads system network configuration 1 TTPs 1 IoCs

Uses contents of /proc filesystem to enumerate network settings.

discovery

Internet Connection Discovery

T1016.001

description	ioc	Process
File opened for reading	/proc/net/route	m-i.p-s.ISIS.elf

/tmp/m-i.p-s.ISIS.elf
/tmp/m-i.p-s.ISIS.elf
1⤵
- Reads system routing table
- Reads system network configuration
PID:712

Network

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1016

Internet Connection Discovery

T1016.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v16

Replay Monitor

Loading Replay Monitor...

Downloads