Overview

overview

5

Static

static

babash.sh

ubuntu-18.04-amd64

5

babash.sh

debian-9-armhf

5

babash.sh

debian-9-mips

5

babash.sh

debian-9-mipsel

5

Analysis

  • max time kernel
    0s
  • max time network
    121s
  • platform
    linux_mips
  • resource
    debian9-mipsbe-en-20211208
  • resource tags

    arch:mipsimage:debian9-mipsbe-en-20211208kernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
  • submitted
    13-09-2022 08:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    babash.sh

  • Size

    199B

  • MD5

    5f933d8a9eea68a72df4ca30b11d583c

  • SHA1

    fa4be3320d3c7d909d5d4dd881070238d841d4a2

  • SHA256

    586224e5624aa95c8f6b3e2a9db5b85d481097e47980730a9f1aab48dd3e5745

  • SHA512

    4ca06ae2773bd274c2989f47c408282d88c66415d09a4e8c8163530166c2bf32956b65bbbe46f743c49795b9c3bcd7540a1281b49e1af789803eeb06bbf1b5b0

Score
5/10

Malware Config

Signatures

  • Writes file to tmp directory 1 IoCs

    Malware often drops required files in the /tmp directory.

Processes

  • /tmp/babash.sh
    /tmp/babash.sh
    1⤵
    • Writes file to tmp directory
    PID:320
    • /bin/chmod
      chmod +x /encryptor
      2⤵
        PID:325
    • /bin/grep
      grep -v Vmid
      1⤵
        PID:323
      • /usr/bin/awk
        awk "{print \$1}"
        1⤵
          PID:324

        Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads