General
-
Target
ldr.sh
-
Size
7KB
-
Sample
220509-ysnsdseca7
-
MD5
05dec77dbc765b43d3b969146da92bb6
-
SHA1
24a7022009444d5dce70514e854e424527b47f90
-
SHA256
8888449dc9796981ca363c0fb9b1e877fe045902ade45966f4037af8eea3d198
-
SHA512
82fbf5df3c58b77e7f24f3c0be80c50d25fce15acd98fcf1f1690219664813a91f17f0289f0d551da836ba21e024714e7275fcb3b7c464fc228dd8dbc0511e5e
Static task
static1
Behavioral task
behavioral1
Sample
ldr.sh
Resource
ubuntu1804-amd64-en-20211208
Behavioral task
behavioral2
Sample
ldr.sh
Resource
debian9-armhf-en-20211208
Behavioral task
behavioral3
Sample
ldr.sh
Resource
debian9-mipsbe-en-20211208
Behavioral task
behavioral4
Sample
ldr.sh
Resource
debian9-mipsel-en-20211208
Malware Config
Targets
-
-
Target
ldr.sh
-
Size
7KB
-
MD5
05dec77dbc765b43d3b969146da92bb6
-
SHA1
24a7022009444d5dce70514e854e424527b47f90
-
SHA256
8888449dc9796981ca363c0fb9b1e877fe045902ade45966f4037af8eea3d198
-
SHA512
82fbf5df3c58b77e7f24f3c0be80c50d25fce15acd98fcf1f1690219664813a91f17f0289f0d551da836ba21e024714e7275fcb3b7c464fc228dd8dbc0511e5e
Score9/10-
Deletes system logs
-
Write file to user bin folder
-
Reads CPU attributes
-
Enumerates kernel/hardware configuration
Reads contents of /sys virtual filesystem to enumerate system information.
-
Reads runtime system information
Reads data from /proc virtual filesystem.
-
Writes file to tmp directory
Malware often drops required files in the /tmp directory.
-