Analysis
-
max time kernel
21s -
platform
debian-9_mips -
resource
debian9-mipsbe-20240418-en -
resource tags
arch:mipsimage:debian9-mipsbe-20240418-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem -
submitted
30-06-2024 12:30
Static task
static1
Behavioral task
behavioral1
Sample
file01.js
Resource
android-x64-20240624-en
Behavioral task
behavioral2
Sample
file01.js
Resource
android-x64-arm64-20240624-en
Behavioral task
behavioral3
Sample
file01.js
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral4
Sample
file01.js
Resource
debian9-armhf-20240418-en
Behavioral task
behavioral5
Sample
file01.js
Resource
debian9-mipsbe-20240418-en
Behavioral task
behavioral6
Sample
file01.js
Resource
debian9-mipsel-20240418-en
Behavioral task
behavioral7
Sample
file01.js
Resource
ubuntu1804-amd64-20240611-en
General
-
Target
file01.js
-
Size
48B
-
MD5
2dc64100ab79cf7b6fe89b535c0a39bc
-
SHA1
a5f7887b6402b20fb26080db84de234e62536f85
-
SHA256
6aee3410ee83dc4376357c23a6d15adb955cd56707156bd0ae506648b6976a4f
-
SHA512
eff5d70deb7eb50eeddb33ab45be2a53cc52ec0096d664375aaab33b08434c3dfe93d159e37cf413eab88989c278655ae3faff21f974a7b77c851165cb5c7458
Malware Config
Signatures
-
Changes its process name 4 IoCs
Processes:
description ioc pid Changes the process name, possibly in an attempt to hide itself V8 WorkerThread 737 Changes the process name, possibly in an attempt to hide itself V8 WorkerThread 739 Changes the process name, possibly in an attempt to hide itself V8 WorkerThread 741 Changes the process name, possibly in an attempt to hide itself V8 WorkerThread 742 -
Checks CPU configuration 1 TTPs 1 IoCs
Checks CPU information which indicate if the system is a virtual machine.
Processes:
nodejsdescription ioc process File opened for reading /proc/cpuinfo nodejs