Extracted

• • Target

    bbcd4e5a25538888b4303968ed24191843e32cff3b2d7960630549af1c8a9d70

  • Size

    535KB

  • MD5

    607aa30b343c1251ddf760886827f9bd

  • SHA1

    d4e83369548e4929de83dae40a67078c7c6a0b6b

  • SHA256

    bbcd4e5a25538888b4303968ed24191843e32cff3b2d7960630549af1c8a9d70

  • SHA512

    afbf889db897d42b83e9a09d568b67c8823433201e3d4a29a1436b490dca3993decb0b7079e71924456327aaab32b3bc02c8ddce601b86d5f7b54ff3840c11b8

  Score

  9^/10

  persistence

  • Writes file to system bin folder

  • Creates/modifies Cron job

    Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    persistence

  • Modifies rc script

    Adding/modifying system rc scripts is a common persistence mechanism.

    persistence

  • Write file to user bin folder

  • Reads runtime system information

    Reads data from /proc virtual filesystem.

  • Writes file to tmp directory

    Malware often drops required files in the /tmp directory.

  behavioral1