Overview

overview

5

Static

static

a.sh

linux_armhf

5

Analysis

  • max time kernel
    0s
  • max time network
    159s
  • platform
    linux_armhf
  • resource
    debian9-armhf-en-20211208
  • submitted
    03-02-2022 11:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a.sh

  • Size

    1KB

  • MD5

    5c87eba077554e54c6dce0f5e0d68ee9

  • SHA1

    b0a2706dbc313d41c20df125eb0fb9ccd797ae1b

  • SHA256

    9d51166961ff4719db3658f930dfcef0c991cccbea09398b650e9356093e1ec7

  • SHA512

    dd0331a01a8a8d4750d5f59f9f5807eb0fe9ea0bea0fa2e0c9d1bde29e44876be5497ad62e18b50a2800143c20311018ae7297496c60af7b8f6cf1856c0d2225

Score
5/10

Malware Config

Signatures

  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

  • Writes file to tmp directory 1 IoCs

    Malware often drops required files in the /tmp directory.

Processes

  • ./a.sh
    ./a.sh
    1⤵
    • Writes file to tmp directory
    PID:347
    • /bin/date
      date
      2⤵
        PID:352
      • /usr/bin/id
        id -u
        2⤵
        • Reads runtime system information
        PID:354
      • /bin/bash
        bash
        2⤵
          PID:357

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads