IOC Report
mips.elf

loading gif

Processes

Path
Cmdline
Malicious
/usr/bin/dash
-
/usr/bin/rm
rm -f /tmp/tmp.WC8v2L67nm /tmp/tmp.okaodldQhL /tmp/tmp.qkDyzY2OYS
/usr/bin/dash
-
/usr/bin/cat
cat /tmp/tmp.WC8v2L67nm
/usr/bin/dash
-
/usr/bin/head
head -n 10
/usr/bin/dash
-
/usr/bin/tr
tr -d \\000-\\011\\013\\014\\016-\\037
/usr/bin/dash
-
/usr/bin/cut
cut -c -80
/usr/bin/dash
-
/usr/bin/cat
cat /tmp/tmp.WC8v2L67nm
/usr/bin/dash
-
/usr/bin/head
head -n 10
/usr/bin/dash
-
/usr/bin/tr
tr -d \\000-\\011\\013\\014\\016-\\037
/usr/bin/dash
-
/usr/bin/cut
cut -c -80
/usr/bin/dash
-
/usr/bin/rm
rm -f /tmp/tmp.WC8v2L67nm /tmp/tmp.okaodldQhL /tmp/tmp.qkDyzY2OYS
/tmp/mips.elf
/tmp/mips.elf
There are 11 hidden processes, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
562fa968c000
page read and write
562faa310000
page read and write
562fa9675000
page execute and read and write
7fc0af3b4000
page read and write
7fc028412000
page read and write
7fc0aed0f000
page read and write
7fc0ade85000
page read and write
7fc0aed2c000
page read and write
7fc0aecec000
page read and write
7fc0af36f000
page read and write
7fc0af367000
page read and write
7fc028411000
page execute read
562fa73e5000
page execute read
7ffe4eae4000
page read and write
7ffe4eb3d000
page execute read
7fc0ae68d000
page read and write
7fc0ae94b000
page read and write
7fc0af23e000
page read and write
7fc0a8021000
page read and write
562fa7677000
page read and write
7fc028416000
page read and write
7fc0ae69b000
page read and write
562fa766d000
page read and write
7fc0af05d000
page read and write
7fc0a8000000
page read and write
There are 15 hidden memdumps, click here to show them.