Analysis
-
max time kernel
0s -
max time network
350s -
platform
linux_armhf -
resource
debian9-armhf-en-20211208 -
resource tags
arch:armhfimage:debian9-armhf-en-20211208kernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem -
submitted
18-08-2022 15:11
Static task
static1
Behavioral task
behavioral1
Sample
things.sh
Resource
debian9-armhf-en-20211208
Behavioral task
behavioral2
Sample
things.sh
Resource
debian9-mipsbe-en-20211208
Behavioral task
behavioral3
Sample
things.sh
Resource
debian9-mipsel-en-20211208
Behavioral task
behavioral4
Sample
things.sh
Resource
ubuntu1804-amd64-en-20211208
General
-
Target
things.sh
-
Size
24B
-
MD5
ee203599b48198136598818678480536
-
SHA1
6b8442cc60bf06388998d9362c49ed01cc0fd61d
-
SHA256
1bfbbd5b244018aa62f45f0177ee28dbe8b6590c5033b4e792a276efa9db0d38
-
SHA512
fc5dbb1c0168780617b9e1dffcefa5ad677532a32c606319f054420d1d0aed8fe2303d820b2d4f5673145c7a06202febe8d0d77da94959baeaf238eef33e9b68
Malware Config
Signatures
-
Writes file to tmp directory 1 IoCs
Malware often drops required files in the /tmp directory.
Processes:
things.shdescription ioc process /tmp/things.sh /tmp/things.sh things.sh