Resubmissions

09-09-2024 15:19

240909-sp8qhaxcpf 9

09-05-2022 20:03

220509-ysnsdseca7 9

General

  • Target

    ldr.sh

  • Size

    7KB

  • Sample

    220509-ysnsdseca7

  • MD5

    05dec77dbc765b43d3b969146da92bb6

  • SHA1

    24a7022009444d5dce70514e854e424527b47f90

  • SHA256

    8888449dc9796981ca363c0fb9b1e877fe045902ade45966f4037af8eea3d198

  • SHA512

    82fbf5df3c58b77e7f24f3c0be80c50d25fce15acd98fcf1f1690219664813a91f17f0289f0d551da836ba21e024714e7275fcb3b7c464fc228dd8dbc0511e5e

Score
9/10

Malware Config

Targets

    • Target

      ldr.sh

    • Size

      7KB

    • MD5

      05dec77dbc765b43d3b969146da92bb6

    • SHA1

      24a7022009444d5dce70514e854e424527b47f90

    • SHA256

      8888449dc9796981ca363c0fb9b1e877fe045902ade45966f4037af8eea3d198

    • SHA512

      82fbf5df3c58b77e7f24f3c0be80c50d25fce15acd98fcf1f1690219664813a91f17f0289f0d551da836ba21e024714e7275fcb3b7c464fc228dd8dbc0511e5e

    Score
    9/10
    • Deletes system logs

    • Write file to user bin folder

    • Reads CPU attributes

    • Enumerates kernel/hardware configuration

      Reads contents of /sys virtual filesystem to enumerate system information.

    • Reads runtime system information

      Reads data from /proc virtual filesystem.

    • Writes file to tmp directory

      Malware often drops required files in the /tmp directory.

MITRE ATT&CK Enterprise v6

Tasks