Overview

overview

5

Static

static

wunderbar_...ium.sh

ubuntu-18.04-amd64

5

wunderbar_...ium.sh

debian-9-armhf

5

wunderbar_...ium.sh

debian-9-mips

5

wunderbar_...ium.sh

debian-9-mipsel

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c9a76da2ccce153eb7421493ae8c0b03ab5104fadb7656dc291fc388af5dc6f2

  • Size

    4.0MB

  • Sample

    221127-wq9wqsge37

  • MD5

    6e2acf64f247c8d6091de522dc8b3446

  • SHA1

    f6e2b569fa6b1c0b7fa47f352596d3c7c0656bb2

  • SHA256

    c9a76da2ccce153eb7421493ae8c0b03ab5104fadb7656dc291fc388af5dc6f2

  • SHA512

    59fb3bc6a116c35ed1f3d111de1d4602af9d62e912d9bd1d69b05ce6e45cfaa39b3f96bc8de1005d712a4c85834df52b5d8436a10cbd65f092945984f486803f

  • SSDEEP

    98304:bQf5a2BGB0BPTtJjgCFVOHwoFfxqrjBw0pgNlhmfeNtTy7:ThYPTvgCfJcqryRlhXi

Score
5/10
linux

Malware Config

Targets

    • Target

      wunderbar_emporium/wunderbar_emporium.sh

    • Size

      1KB

    • MD5

      a4bd78f8b9f69b508daca4268dcc66ce

    • SHA1

      02d29ddb69616a0d3d4cf4348f51d3f81f147e67

    • SHA256

      64206f3f7d6c962fb9bf49b161e636d8be4bedde1a11d2a0164006aa25748a7e

    • SHA512

      60ba980e3cd14c0dc71f0b34b8f79cca1d2349569832a526d5b052a78baa3ceec36e6b312876251b019b3371e898d175ba0b8c7e32f8ae9a140fdb9bffa6e3c6

    Score
    5/10

    • Reads runtime system information

      Reads data from /proc virtual filesystem.

    • Writes file to tmp directory

      Malware often drops required files in the /tmp directory.

    behavioral1behavioral2behavioral3behavioral4

MITRE ATT&CK Matrix

Tasks