Analysis
-
max time kernel
0s -
max time network
159s -
platform
linux_armhf -
resource
debian9-armhf-en-20211208 -
submitted
03-02-2022 11:45
Static task
static1
Behavioral task
behavioral1
Sample
a.sh
Resource
debian9-armhf-en-20211208
linux_armhf
0 signatures
0 seconds
General
-
Target
a.sh
-
Size
1KB
-
MD5
5c87eba077554e54c6dce0f5e0d68ee9
-
SHA1
b0a2706dbc313d41c20df125eb0fb9ccd797ae1b
-
SHA256
9d51166961ff4719db3658f930dfcef0c991cccbea09398b650e9356093e1ec7
-
SHA512
dd0331a01a8a8d4750d5f59f9f5807eb0fe9ea0bea0fa2e0c9d1bde29e44876be5497ad62e18b50a2800143c20311018ae7297496c60af7b8f6cf1856c0d2225
Score
5/10
Malware Config
Signatures
-
Reads runtime system information 1 IoCs
Reads data from /proc virtual filesystem.
Processes:
iddescription ioc process /proc/filesystems /proc/filesystems id -
Writes file to tmp directory 1 IoCs
Malware often drops required files in the /tmp directory.
Processes:
a.shdescription ioc process /tmp/ok.log /tmp/ok.log a.sh