Overview

overview

9

Static

static

1

encrypt.sh

ubuntu-18.04-amd64

9

encrypt.sh

debian-9-armhf

9

encrypt.sh

debian-9-mips

9

encrypt.sh

debian-9-mipsel

9

Resubmissions

12/05/2023, 14:01

230512-rbhrgsdc97 6

12/02/2023, 18:04

230212-wnlq5afa3w 9

Sharing

Copy URL Twitter E-mail

General

  • Target

    encrypt.sh

  • Size

    3KB

  • Sample

    230212-wnlq5afa3w

  • MD5

    cf5762eea336cf74a0323d715f72b8b9

  • SHA1

    b40e39adadc5ae4d98fd3900837414797562b1bc

  • SHA256

    ae4b7284a9538c66432f02097c3de14e2253d16b6602c4694753468bc14d7d28

  • SHA512

    35822aafe30d8a14a1ac48d25f6a5eff90c55e18c44df6432bcec962370b6ff1fe06559510090691abb5e4b50594b7067b48f3e582944b07af1c3669fe739c77

Score
9/10
linux

Malware Config

Targets

    • Target

      encrypt.sh

    • Size

      3KB

    • MD5

      cf5762eea336cf74a0323d715f72b8b9

    • SHA1

      b40e39adadc5ae4d98fd3900837414797562b1bc

    • SHA256

      ae4b7284a9538c66432f02097c3de14e2253d16b6602c4694753468bc14d7d28

    • SHA512

      35822aafe30d8a14a1ac48d25f6a5eff90c55e18c44df6432bcec962370b6ff1fe06559510090691abb5e4b50594b7067b48f3e582944b07af1c3669fe739c77

    Score
    9/10

    • Writes file to system bin folder

    • Reads CPU attributes

    • Reads runtime system information

      Reads data from /proc virtual filesystem.

    • Writes file to tmp directory

      Malware often drops required files in the /tmp directory.

    behavioral1behavioral2behavioral3behavioral4

MITRE ATT&CK Enterprise v6

Tasks