f2eec1a23e49f45d880e9c5e73e3922421194156c016cbf4fe8a82008d2c5c80 | Triage

Submit
Reports

Overview

overview

9

Static

static

new.sh

ubuntu-18.04-amd64

9

Sharing

General

Target

new.sh
Size

1KB
Sample

220817-18h8ysdecm
MD5

2e5a7bbf887155184d5683eb566049d0
SHA1

d7e39711ef6ff06b5317d717bd31ebcbc63c38b4
SHA256

f2eec1a23e49f45d880e9c5e73e3922421194156c016cbf4fe8a82008d2c5c80
SHA512

25f88d5c776ae319d250ff0d8b75db08ac8517b1503c3309ce28456e32aada9504a486ce9ee7b61274ff4f2284fecac2e7289b0ae291393ee48f5df4f8be9951

Score

9^/10

discovery linux

Static task

static1

Behavioral task

behavioral1

Sample

new.sh

Resource

ubuntu1804-amd64-en-20211208

ubuntu-18.04-amd64

3 signatures

600 seconds

Malware Config

Targets

- Target
  
  new.sh
- Size
  
  1KB
- MD5
  
  2e5a7bbf887155184d5683eb566049d0
- SHA1
  
  d7e39711ef6ff06b5317d717bd31ebcbc63c38b4
- SHA256
  
  f2eec1a23e49f45d880e9c5e73e3922421194156c016cbf4fe8a82008d2c5c80
- SHA512
  
  25f88d5c776ae319d250ff0d8b75db08ac8517b1503c3309ce28456e32aada9504a486ce9ee7b61274ff4f2284fecac2e7289b0ae291393ee48f5df4f8be9951
Score

9^/10

discovery
- Contacts a large (294562) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy