General
-
Target
c9a76da2ccce153eb7421493ae8c0b03ab5104fadb7656dc291fc388af5dc6f2
-
Size
4.0MB
-
Sample
221127-wq9wqsge37
-
MD5
6e2acf64f247c8d6091de522dc8b3446
-
SHA1
f6e2b569fa6b1c0b7fa47f352596d3c7c0656bb2
-
SHA256
c9a76da2ccce153eb7421493ae8c0b03ab5104fadb7656dc291fc388af5dc6f2
-
SHA512
59fb3bc6a116c35ed1f3d111de1d4602af9d62e912d9bd1d69b05ce6e45cfaa39b3f96bc8de1005d712a4c85834df52b5d8436a10cbd65f092945984f486803f
-
SSDEEP
98304:bQf5a2BGB0BPTtJjgCFVOHwoFfxqrjBw0pgNlhmfeNtTy7:ThYPTvgCfJcqryRlhXi
Static task
static1
Behavioral task
behavioral1
Sample
wunderbar_emporium/wunderbar_emporium.sh
Resource
ubuntu1804-amd64-20221111-en
Behavioral task
behavioral2
Sample
wunderbar_emporium/wunderbar_emporium.sh
Resource
debian9-armhf-20221111-en
Behavioral task
behavioral3
Sample
wunderbar_emporium/wunderbar_emporium.sh
Resource
debian9-mipsbe-20221111-en
Behavioral task
behavioral4
Sample
wunderbar_emporium/wunderbar_emporium.sh
Resource
debian9-mipsel-en-20211208
Malware Config
Targets
-
-
Target
wunderbar_emporium/wunderbar_emporium.sh
-
Size
1KB
-
MD5
a4bd78f8b9f69b508daca4268dcc66ce
-
SHA1
02d29ddb69616a0d3d4cf4348f51d3f81f147e67
-
SHA256
64206f3f7d6c962fb9bf49b161e636d8be4bedde1a11d2a0164006aa25748a7e
-
SHA512
60ba980e3cd14c0dc71f0b34b8f79cca1d2349569832a526d5b052a78baa3ceec36e6b312876251b019b3371e898d175ba0b8c7e32f8ae9a140fdb9bffa6e3c6
Score5/10-
Reads runtime system information
Reads data from /proc virtual filesystem.
-
Writes file to tmp directory
Malware often drops required files in the /tmp directory.
-