Overview
overview
5Static
static
/.bash/crond
ubuntu-18.04-amd64
1/.bash/makesalt
ubuntu-18.04-amd64
/.bash/psybncchk
ubuntu-18.04-amd64
5/.bash/psybncchk
debian-9-armhf
1/.bash/psybncchk
debian-9-mips
5/.bash/psybncchk
debian-9-mipsel
1/.bash/src/match.o
ubuntu-18.04-amd64
/.bash/sr...fish.o
ubuntu-18.04-amd64
/.bash/sr...ient.o
ubuntu-18.04-amd64
/.bash/src/p_crypt.o
ubuntu-18.04-amd64
/.bash/src/p_dcc.o
ubuntu-18.04-amd64
/.bash/src/p_hash.o
ubuntu-18.04-amd64
/.bash/src/p_idea.o
ubuntu-18.04-amd64
/.bash/sr...func.o
ubuntu-18.04-amd64
/.bash/sr...tnet.o
ubuntu-18.04-amd64
/.bash/src/p_link.o
ubuntu-18.04-amd64
/.bash/src/p_log.o
ubuntu-18.04-amd64
/.bash/sr...mory.o
ubuntu-18.04-amd64
/.bash/sr...work.o
ubuntu-18.04-amd64
/.bash/src/p_parse.o
ubuntu-18.04-amd64
/.bash/src/p_peer.o
ubuntu-18.04-amd64
/.bash/sr...ript.o
ubuntu-18.04-amd64
/.bash/sr...rver.o
ubuntu-18.04-amd64
/.bash/sr...cket.o
ubuntu-18.04-amd64
/.bash/sr...ring.o
ubuntu-18.04-amd64
/.bash/sr...smsg.o
ubuntu-18.04-amd64
/.bash/sr...logy.o
ubuntu-18.04-amd64
/.bash/sr...late.o
ubuntu-18.04-amd64
/.bash/sr...nnel.o
ubuntu-18.04-amd64
/.bash/sr...file.o
ubuntu-18.04-amd64
/.bash/src/psybnc.o
ubuntu-18.04-amd64
/.bash/sr...intf.o
ubuntu-18.04-amd64
Analysis
-
max time kernel
0s -
max time network
102s -
platform
linux_amd64 -
resource
ubuntu1804-amd64-en-20211208 -
resource tags
arch:amd64arch:i386image:ubuntu1804-amd64-en-20211208kernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system -
submitted
25/11/2022, 17:37 UTC
Static task
static1
Behavioral task
behavioral1
Sample
/.bash/crond
Resource
ubuntu1804-amd64-en-20211208
ubuntu-18.04-amd64
Behavioral task
behavioral2
Sample
/.bash/makesalt
Resource
ubuntu1804-amd64-en-20211208
ubuntu-18.04-amd64
Behavioral task
behavioral3
Sample
/.bash/psybncchk
Resource
ubuntu1804-amd64-en-20211208
ubuntu-18.04-amd64
Behavioral task
behavioral4
Sample
/.bash/psybncchk
Resource
debian9-armhf-en-20211208
debian-9-armhf
Behavioral task
behavioral5
Sample
/.bash/psybncchk
Resource
debian9-mipsbe-en-20211208
debian-9-mips
Behavioral task
behavioral6
Sample
/.bash/psybncchk
Resource
debian9-mipsel-en-20211208
debian-9-mipsel
Behavioral task
behavioral7
Sample
/.bash/src/match.o
Resource
ubuntu1804-amd64-20221111-en
ubuntu-18.04-amd64
Behavioral task
behavioral8
Sample
/.bash/src/p_blowfish.o
Resource
ubuntu1804-amd64-20221111-en
ubuntu-18.04-amd64
Behavioral task
behavioral9
Sample
/.bash/src/p_client.o
Resource
ubuntu1804-amd64-en-20211208
ubuntu-18.04-amd64
Behavioral task
behavioral10
Sample
/.bash/src/p_crypt.o
Resource
ubuntu1804-amd64-20221111-en
ubuntu-18.04-amd64
Behavioral task
behavioral11
Sample
/.bash/src/p_dcc.o
Resource
ubuntu1804-amd64-20221111-en
ubuntu-18.04-amd64
Behavioral task
behavioral12
Sample
/.bash/src/p_hash.o
Resource
ubuntu1804-amd64-20221111-en
ubuntu-18.04-amd64
Behavioral task
behavioral13
Sample
/.bash/src/p_idea.o
Resource
ubuntu1804-amd64-en-20211208
ubuntu-18.04-amd64
Behavioral task
behavioral14
Sample
/.bash/src/p_inifunc.o
Resource
ubuntu1804-amd64-20221111-en
ubuntu-18.04-amd64
Behavioral task
behavioral15
Sample
/.bash/src/p_intnet.o
Resource
ubuntu1804-amd64-20221111-en
ubuntu-18.04-amd64
Behavioral task
behavioral16
Sample
/.bash/src/p_link.o
Resource
ubuntu1804-amd64-20221111-en
ubuntu-18.04-amd64
Behavioral task
behavioral17
Sample
/.bash/src/p_log.o
Resource
ubuntu1804-amd64-en-20211208
ubuntu-18.04-amd64
Behavioral task
behavioral18
Sample
/.bash/src/p_memory.o
Resource
ubuntu1804-amd64-20221111-en
ubuntu-18.04-amd64
Behavioral task
behavioral19
Sample
/.bash/src/p_network.o
Resource
ubuntu1804-amd64-20221111-en
ubuntu-18.04-amd64
Behavioral task
behavioral20
Sample
/.bash/src/p_parse.o
Resource
ubuntu1804-amd64-en-20211208
ubuntu-18.04-amd64
Behavioral task
behavioral21
Sample
/.bash/src/p_peer.o
Resource
ubuntu1804-amd64-20221111-en
ubuntu-18.04-amd64
Behavioral task
behavioral22
Sample
/.bash/src/p_script.o
Resource
ubuntu1804-amd64-20221111-en
ubuntu-18.04-amd64
Behavioral task
behavioral23
Sample
/.bash/src/p_server.o
Resource
ubuntu1804-amd64-en-20211208
ubuntu-18.04-amd64
Behavioral task
behavioral24
Sample
/.bash/src/p_socket.o
Resource
ubuntu1804-amd64-20221111-en
ubuntu-18.04-amd64
Behavioral task
behavioral25
Sample
/.bash/src/p_string.o
Resource
ubuntu1804-amd64-20221111-en
ubuntu-18.04-amd64
Behavioral task
behavioral26
Sample
/.bash/src/p_sysmsg.o
Resource
ubuntu1804-amd64-20221111-en
ubuntu-18.04-amd64
Behavioral task
behavioral27
Sample
/.bash/src/p_topology.o
Resource
ubuntu1804-amd64-20221111-en
ubuntu-18.04-amd64
Behavioral task
behavioral28
Sample
/.bash/src/p_translate.o
Resource
ubuntu1804-amd64-en-20211208
ubuntu-18.04-amd64
Behavioral task
behavioral29
Sample
/.bash/src/p_uchannel.o
Resource
ubuntu1804-amd64-20221111-en
ubuntu-18.04-amd64
Behavioral task
behavioral30
Sample
/.bash/src/p_userfile.o
Resource
ubuntu1804-amd64-20221111-en
ubuntu-18.04-amd64
Behavioral task
behavioral31
Sample
/.bash/src/psybnc.o
Resource
ubuntu1804-amd64-en-20211208
ubuntu-18.04-amd64
Behavioral task
behavioral32
Sample
/.bash/src/snprintf.o
Resource
ubuntu1804-amd64-20221111-en
ubuntu-18.04-amd64
General
-
Target
/.bash/psybncchk
-
Size
369B
-
MD5
9357d73079aeb1d8ff31ca7418bf1c2f
-
SHA1
02f9d22cbc30e89c53c4c8f6c070fa8d2b4785c1
-
SHA256
42ac148c3b73b8d4d47f54fd03a65f97c2b3495b20a1640f88d45b97d86c2331
-
SHA512
65b21aed9ff27e4f5b38b946d4a9d50fcbc3380a0eb4153e73fc58786c4b446e343ec9c370f1cb7cbc5ad68f1d062b36303935a713b46afeeec8a143232923ed
Malware Config
Signatures
-
Writes file to tmp directory 1 IoCs
Malware often drops required files in the /tmp directory.
description ioc Process /tmp/ /.bash/psybncchk /tmp/ /.bash/psybncchk psybncchk