General
-
Target
Network-Reinstall-System-Modify.sh
-
Size
22KB
-
Sample
230328-s2g4badd8y
-
MD5
9c28ccb76f59bd3db8024df3390cc43f
-
SHA1
71456f36535ad65ad3d8999ff33bd8060a285bf1
-
SHA256
54a8e65a111d9259425671d12dd74b18c60d4ffaf672b3e98705e662a344c1f4
-
SHA512
74abcf82204ef17faf41531228a93c23c760f8ae2f494a741bbda5bcfa069cb85f82532f5663abd30ab670237e12a8f35250ca918d05dd50c08244ad3df27110
-
SSDEEP
192:wkT+rj6wiacnMRw0zjpw5fI2BfxKUM/uiT9hEpaQ8fj5qraRzlko0uoHb3+gYOG/:wX6Sicw+YpVY6mLLlWP7UypKYmb
Static task
static1
Behavioral task
behavioral1
Sample
Network-Reinstall-System-Modify.sh
Resource
ubuntu1804-amd64-en-20211208
Behavioral task
behavioral2
Sample
Network-Reinstall-System-Modify.sh
Resource
debian9-armhf-20221111-en
Behavioral task
behavioral3
Sample
Network-Reinstall-System-Modify.sh
Resource
debian9-mipsbe-en-20211208
Behavioral task
behavioral4
Sample
Network-Reinstall-System-Modify.sh
Resource
debian9-mipsel-20221111-en
Malware Config
Targets
-
-
Target
Network-Reinstall-System-Modify.sh
-
Size
22KB
-
MD5
9c28ccb76f59bd3db8024df3390cc43f
-
SHA1
71456f36535ad65ad3d8999ff33bd8060a285bf1
-
SHA256
54a8e65a111d9259425671d12dd74b18c60d4ffaf672b3e98705e662a344c1f4
-
SHA512
74abcf82204ef17faf41531228a93c23c760f8ae2f494a741bbda5bcfa069cb85f82532f5663abd30ab670237e12a8f35250ca918d05dd50c08244ad3df27110
-
SSDEEP
192:wkT+rj6wiacnMRw0zjpw5fI2BfxKUM/uiT9hEpaQ8fj5qraRzlko0uoHb3+gYOG/:wX6Sicw+YpVY6mLLlWP7UypKYmb
Score9/10-
Deletes system logs
-
Modifies hosts file
Adds to hosts file used for mapping hosts to IP addresses.
-
Writes DNS configuration
Writes data to DNS resolver config file.
-
Write file to user bin folder
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-
Enumerates kernel/hardware configuration
Reads contents of /sys virtual filesystem to enumerate system information.
-
Reads runtime system information
Reads data from /proc virtual filesystem.
-
Writes file to tmp directory
Malware often drops required files in the /tmp directory.
-