f572625514b52dde4e2b6e567b8e2738b133e50ee3c5b31d80016117440311fe | Triage

Sharing

General

Target

netpbm-10.73.41.tgz
Size

2.6MB
Sample

221002-28cxlsgcap
MD5

07f9b0cf2dca5c14a2fd185a0803c757
SHA1

b129560fcb2eb88365fbead57b8939174cce1055
SHA256

f572625514b52dde4e2b6e567b8e2738b133e50ee3c5b31d80016117440311fe
SHA512

7a4cfbd39926fab4df06d1f03fd3c91600836c316bd28e77825ba53009a87180653e84662a96179571d3dfa99d951b7339927ee9605e07d2706a41b7e389b6a9
SSDEEP

49152:VuK6VwJO0qBOsVwJJzPO0mUxAJOtt7OkV01mFLG6mPHwMCeZgHr/SvQsvkCIVAsG:IiJ5qxCPGjJtg0OvmPHwMC8PvZsCIpfa

Score

5^/10

linux

Malware Config

Targets

- Target
  
  netpbm-10.73.41/buildtools/configure.pl
- Size
  
  75KB
- MD5
  
  07024b6f3f9f289f2870730bef881ab5
- SHA1
  
  5fcb297d6891722a1d2fe4c33452c80cc46608cc
- SHA256
  
  6b795ec8deae669445785bf197d91fb4c540ef8fcb6386d2f885619641381e31
- SHA512
  
  360e47f08c45518cc0d6e9af77bbfafd6ea35e331450eaf97460a71296b464d1ef6e2041a7fef2c7ae29600a88a2b59ebd04a26e17d77c495668786c3dede7eb
- SSDEEP
  
  1536:XhbxdEZ208vo9RNuitTinBwK6EfNQ4/7Y:XhFdEY08vovPtFYQi0
Score

5^/10
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral1 behavioral2 behavioral3 behavioral4
- Target
  
  netpbm-10.73.41/buildtools/debian/mkdeb
- Size
  
  16KB
- MD5
  
  97b1fc2e28f3f21f27112fc78c7befe5
- SHA1
  
  3367a2838fb046e5a77e39850c26a7362690b3f2
- SHA256
  
  b9f84b588c7e181abfb5ab57779387260e69ef94f1209ade62d1b29b8a11cf4b
- SHA512
  
  0d40a2afa3c4b412d60af7256e8adff5e9549120a35abc3284d73b7785d449a5c1aecb125fbbcb309790021b66720592d9c6a1cada4d0269852866795faaa3ce
- SSDEEP
  
  192:gMHxdYpJbyb4spTYQmn8Am6TeEJQYaUM9IiBoA9AtafjRWytoine19oMGolO5+zz:gMRWAq8AmaQY2O8pc
Score

5^/10
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral5 behavioral6 behavioral7 behavioral8
- Target
  
  netpbm-10.73.41/buildtools/debian/postinst
- Size
  
  63B
- MD5
  
  4b5575d2e17a0ac96c6fc94e6a76631f
- SHA1
  
  e5728c5cebd6d3bbe906276e1d0a01755c1517a7
- SHA256
  
  bf3a286408b3e0f7d335a8ce8dadada992e3135678a6c71bd738022d979f6362
- SHA512
  
  07585f6590c9067c012d6c66f0cd4b4591b14dd617809e9c1b7c8c244eccdb6f0aa1e37f0cc3730410b117e0edd749913b54ecea1bc563ce8df60129d2ec0101
Score

5^/10
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral9 behavioral10 behavioral11 behavioral12
- Target
  
  netpbm-10.73.41/buildtools/debian/postrm
- Size
  
  60B
- MD5
  
  f7370943896575aa176ee85454653bee
- SHA1
  
  6c084975b9f0c1bbce744125fc0bc93643552ba5
- SHA256
  
  911fa49c3bbe76cbec1adf15e90544647c094959d96321a3dd5dbb5d593d3454
- SHA512
  
  e5d22efbd90b171a95cdc3c45c31d97988c4282761b250c9b14f276a676261e6ed97f39c3ff0503a2f825a9fd4245c9afd5cd6fb09aa919fcf2a320cd5756680
Score

5^/10
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral13 behavioral14 behavioral15 behavioral16
- Target
  
  netpbm-10.73.41/buildtools/install.sh
- Size
  
  5KB
- MD5
  
  4b677e0d1c9803b4df41b98f1a3c29f7
- SHA1
  
  c48318b6aef822fff8762627191c5fb5fb200c1b
- SHA256
  
  1ca44c57b37479f4758332ba53da8b66b90ef71a956f389c98a6c3ca88896792
- SHA512
  
  a44936353882950dd7c9cd6d1cc171073e700a58aa0df616742853cb294bbe9de455ae79eced94155faa92f2b9fbd0a9f0d9201288d6ff588a9ec6354b7257d2
- SSDEEP
  
  96:KbtKu3zP3/nfWYSXngsE36sE0sEJ1j99AN0H3thy3GmonUfJtaRru5cpLaX+Ufdb:fwzP3PfWYSXhEjEtEJ1j99AN0H3thy3R
Score

5^/10
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral17 behavioral18 behavioral19 behavioral20
- Target
  
  netpbm-10.73.41/buildtools/installnetpbm.pl
- Size
  
  33KB
- MD5
  
  5e13b43f1d1bddd5eab40831ca107a2a
- SHA1
  
  7cbafca34acd33bcbf136520649859ea29f99fd4
- SHA256
  
  7101ac48da7136beab8fb5640496abd539f5153e535c8a2e284a06f8780ef8e6
- SHA512
  
  29b6634b0bf9e9e5b331da140769caa3c7e50d99298cc6ea6bbf1aed0ef9111be9894a190c688f9871954d6b4592cfd55b7cba8b8f732a20ebab554d18626ac9
- SSDEEP
  
  384:9H9eIk5dhFLBtvp0/NanUfXRHU74vl2551aHlNt2OO:9H9dkvltG8X74vlwbq4OO
Score

5^/10
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral21 behavioral22 behavioral23 behavioral24
- Target
  
  netpbm-10.73.41/buildtools/installosf
- Size
  
  780B
- MD5
  
  0cf0303c5188de620d162124996e9d18
- SHA1
  
  7d1905b921bc8b0c660b4fb0c5f43b6e7bdb29a5
- SHA256
  
  89be0394e9272e642be2481cc45234ef014f725bba86aa31d0215ca9873fff1e
- SHA512
  
  6fc41564c3744b0840ef147e2c7ef58d797098e728b767cd5bb4f15b84b9fbae378fa1c1d13257b4ee3db5c48738dfee9815f9cc358ed67b5ec1100e12440b5b
Score

5^/10
- Reads runtime system information
  Reads data from /proc virtual filesystem.
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral25 behavioral26 behavioral27 behavioral28
- Target
  
  netpbm-10.73.41/buildtools/make_merge.sh
- Size
  
  298B
- MD5
  
  fdde205aae60aa9428c9d2616ae85fc5
- SHA1
  
  f729134cbeea2040a28f98252e4a08b9590be375
- SHA256
  
  4bd994e2492a5a8233600136c519a76dc9fba2949ee5dcc3b70ad0a9f02cfa70
- SHA512
  
  395f9bc5ccc039db42e112d9840a98bb16195df08531985f753aba540189b750da65037bdac5d1bcbc16eba28bb88fa1bd79671546b5abb1f5150b08765d7291
Score

5^/10
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral29 behavioral30 behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32