a93b21639885a6c813a9ddcf76edc00c9adbbcdf53cd34ddb18420045b845963 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

venom.sh
Size

692KB
Sample

230515-12s5ksad35
MD5

14c92d9ac91ddf796cc9365bc065ed7f
SHA1

567570f2886cdf0d719a6ee5c14c280a6d75ad97
SHA256

a93b21639885a6c813a9ddcf76edc00c9adbbcdf53cd34ddb18420045b845963
SHA512

fca828e90a0c1edada18594cc30774af50d7294b93c0bad2578eea760e955bab09f71ed74cdf57c3bb45e03eaca18027d3987e4c415b888254f0aa1a2540e072
SSDEEP

6144:3cOVC5pIUi3A6Q2QoOc/0ICOVC05pmQXPKPgPCP2PQPZPcPjOVC5pUPCPqPQPZPA:37DfFPa

Score

5^/10

linux

Malware Config

Targets

- Target
  
  venom.sh
- Size
  
  692KB
- MD5
  
  14c92d9ac91ddf796cc9365bc065ed7f
- SHA1
  
  567570f2886cdf0d719a6ee5c14c280a6d75ad97
- SHA256
  
  a93b21639885a6c813a9ddcf76edc00c9adbbcdf53cd34ddb18420045b845963
- SHA512
  
  fca828e90a0c1edada18594cc30774af50d7294b93c0bad2578eea760e955bab09f71ed74cdf57c3bb45e03eaca18027d3987e4c415b888254f0aa1a2540e072
- SSDEEP
  
  6144:3cOVC5pIUi3A6Q2QoOc/0ICOVC05pmQXPKPgPCP2PQPZPcPjOVC5pUPCPqPQPZPA:37DfFPa
Score

5^/10
- Enumerates kernel/hardware configuration
  Reads contents of /sys virtual filesystem to enumerate system information.
- Reads runtime system information
  Reads data from /proc virtual filesystem.
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral1 behavioral2 behavioral3 behavioral4

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4