Analysis

  • max time kernel
    0s
  • max time network
    103s
  • platform
    linux_amd64
  • resource
    ubuntu1804-amd64-en-20211208
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-en-20211208kernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    16-08-2022 02:49

General

  • Target

    JetBrains 2022 ??/??2????2099????????????/ja-netfilter-all/scripts/install.sh

  • Size

    3KB

  • MD5

    a39586feddfc26b3193372ce44f48abc

  • SHA1

    25fafe775fd3735b2506ef8286d5768c04e0b179

  • SHA256

    3666798d273bacc4e8515296da6c0601e5ea2e69c6aceeb25afb5d450e62c00d

  • SHA512

    a63f744231531d894983ff10822f11e37ea0ac8189981e19c7be52d7480a37b9800247dffec1072dfd21413cbab65f1abcf73633fef33d57556461aa890016be

Score
5/10

Malware Config

Signatures

  • Writes file to tmp directory 1 IoCs

    Malware often drops required files in the /tmp directory.

Processes

  • /tmp/JetBrains 2022 ??/??2????2099????????????/ja-netfilter-all/scripts/install.sh
    "/tmp/JetBrains 2022 ??/??2????2099????????????/ja-netfilter-all/scripts/install.sh"
    1⤵
    • Writes file to tmp directory
    PID:592
    • /bin/uname
      uname -s
      2⤵
        PID:593
      • /usr/bin/dirname
        dirname
        2⤵
          PID:594
      • /usr/bin/dirname
        dirname "/tmp/JetBrains 2022 ??/??2????2099????????????/ja-netfilter-all/scripts/install.sh"
        1⤵
          PID:596

        Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads