Overview
overview
10Static
static
Opensea Mint.7z
windows7-x64
3Opensea Mint.7z
windows10-2004-x64
3Opensea Mint/LICENSE
windows7-x64
1Opensea Mint/LICENSE
windows10-2004-x64
1Opensea Mi...er.exe
windows7-x64
10Opensea Mi...er.exe
windows10-2004-x64
10Opensea Mi...er.bat
windows7-x64
1Opensea Mi...er.bat
windows10-2004-x64
1Opensea Mi...les.sh
ubuntu-18.04-amd64
8Opensea Mi...les.sh
debian-9-armhf
8Opensea Mi...les.sh
debian-9-mips
8Opensea Mi...les.sh
debian-9-mipsel
8Opensea Mi...es.dll
ubuntu-18.04-amd64
Opensea Mi...es.dll
debian-9-armhf
Opensea Mi...es.dll
debian-9-mips
Opensea Mi...es.dll
debian-9-mipsel
Analysis
-
max time kernel
0s -
max time network
103s -
platform
linux_amd64 -
resource
ubuntu1804-amd64-en-20211208 -
resource tags
arch:amd64arch:i386image:ubuntu1804-amd64-en-20211208kernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system -
submitted
11-08-2022 02:05
Static task
static1
Behavioral task
behavioral1
Sample
Opensea Mint.7z
Resource
win7-20220715-en
Behavioral task
behavioral2
Sample
Opensea Mint.7z
Resource
win10v2004-20220721-en
Behavioral task
behavioral3
Sample
Opensea Mint/LICENSE
Resource
win7-20220715-en
Behavioral task
behavioral4
Sample
Opensea Mint/LICENSE
Resource
win10v2004-20220722-en
Behavioral task
behavioral5
Sample
Opensea Mint/Launcher.exe
Resource
win7-20220718-en
Behavioral task
behavioral6
Sample
Opensea Mint/Launcher.exe
Resource
win10v2004-20220721-en
Behavioral task
behavioral7
Sample
Opensea Mint/helper.bat
Resource
win7-20220715-en
Behavioral task
behavioral8
Sample
Opensea Mint/helper.bat
Resource
win10v2004-20220721-en
Behavioral task
behavioral9
Sample
Opensea Mint/install_modules.sh
Resource
ubuntu1804-amd64-en-20211208
Behavioral task
behavioral10
Sample
Opensea Mint/install_modules.sh
Resource
debian9-armhf-en-20211208
Behavioral task
behavioral11
Sample
Opensea Mint/install_modules.sh
Resource
debian9-mipsbe-en-20211208
Behavioral task
behavioral12
Sample
Opensea Mint/install_modules.sh
Resource
debian9-mipsel-en-20211208
Behavioral task
behavioral13
Sample
Opensea Mint/libraries.dll
Resource
ubuntu1804-amd64-en-20211208
Behavioral task
behavioral14
Sample
Opensea Mint/libraries.dll
Resource
debian9-armhf-en-20211208
Behavioral task
behavioral15
Sample
Opensea Mint/libraries.dll
Resource
debian9-mipsbe-en-20211208
Behavioral task
behavioral16
Sample
Opensea Mint/libraries.dll
Resource
debian9-mipsel-en-20211208
General
-
Target
Opensea Mint/install_modules.sh
-
Size
3KB
-
MD5
05a28430f97b6db328b9f748005718cc
-
SHA1
da28f7c62b43f2cb97e5b6a2e71eb8199bdbae5c
-
SHA256
d05559d26e8db46d562314ecc55bb8f0f17518f313cf0f2e0cff690f4240aacf
-
SHA512
d2f64b14e83b668c03af5c4f9495a7b268a7756220b74df82e54fba0edea3f374e353dd69b9c293cd51fbd6c5ecaea86072ce2895f91a09451bf0cbd2019cbdf
Malware Config
Signatures
-
Modifies hosts file 1 IoCs
Adds to hosts file used for mapping hosts to IP addresses.
Processes:
cpandescription ioc process /etc/hosts /etc/hosts cpan -
Writes DNS configuration 1 TTPs 1 IoCs
Writes data to DNS resolver config file.
-
Write file to user bin folder 1 TTPs 1 IoCs
-
Writes file to tmp directory 3 IoCs
Malware often drops required files in the /tmp directory.
Processes:
install_modules.shcpandescription ioc process /tmp/Opensea Mint/install_modules.sh /tmp/Opensea Mint/install_modules.sh install_modules.sh /tmp/cpan_install_q3r2.txt /tmp/cpan_install_q3r2.txt cpan /tmp/cpan_install_Hkn3.txt /tmp/cpan_install_Hkn3.txt cpan
Processes
-
/tmp/Opensea Mint/install_modules.sh"/tmp/Opensea Mint/install_modules.sh"1⤵
- Writes file to tmp directory
PID:576 -
/usr/bin/cpancpan install Authen::Passphrase::LANManager Authen::Passphrase::MySQL323 Authen::Passphrase::NTHash Authen::Passphrase::PHPass Bitcoin::Crypto Bitcoin::Crypto::Base58 Compress::Zlib Convert::EBCDIC Crypt::AuthEnc::GCM Crypt::CBC Crypt::DES Crypt::DES_EDE3 Crypt::Digest::RIPEMD160 Crypt::Digest::Whirlpool Crypt::ECB Crypt::Eksblowfish::Bcrypt Crypt::GCrypt Crypt::Mode::CBC Crypt::Mode::ECB Crypt::MySQL Crypt::OpenSSH::ChachaPoly Crypt::OpenSSL::EC Crypt::OpenSSL::Bignum::CTX Crypt::PBKDF2 Crypt::RC4 Crypt::Rijndael Crypt::ScryptKDF Crypt::Skip32 Crypt::Twofish Crypt::UnixCrypt_XS Data::Types Digest::BLAKE2 Digest::CMAC Digest::CRC Digest::GOST Digest::HMAC Digest::HMAC_MD5 Digest::Keccak Digest::MD4 Digest::MD5 Digest::MurmurHash3 Digest::Perl::MD5 Digest::SHA Digest::SHA1 Digest::SHA3 Digest::SipHash Encode JSON Math::BigInt MIME::Base64 Net::DNS::RR::NSEC3 Net::DNS::SEC POSIX Text::Iconv2⤵
- Modifies hosts file
- Writes DNS configuration
- Write file to user bin folder
- Writes file to tmp directory
PID:577 -
/bin/pwd/bin/pwd3⤵PID:582