Overview

overview

7

Static

static

6

tikiwiki-3...ts.ps1

windows7-x64

1

tikiwiki-3...ts.ps1

windows10-2004-x64

1

tikiwiki-3...se.vbs

windows7-x64

1

tikiwiki-3...se.vbs

windows10-2004-x64

1

tikiwiki-3...gs.ps1

windows7-x64

1

tikiwiki-3...gs.ps1

windows10-2004-x64

1

tikiwiki-3...ess.sh

ubuntu-18.04-amd64

3

tikiwiki-3...ess.sh

debian-9-armhf

7

tikiwiki-3...ess.sh

debian-9-mips

3

tikiwiki-3...ess.sh

debian-9-mipsel

3

tikiwiki-3...lib.js

windows7-x64

1

tikiwiki-3...lib.js

windows10-2004-x64

1

tikiwiki-3...one.js

windows7-x64

1

tikiwiki-3...one.js

windows10-2004-x64

1

tikiwiki-3...ity.js

windows7-x64

1

tikiwiki-3...ity.js

windows10-2004-x64

1

tikiwiki-3...nce.js

windows7-x64

1

tikiwiki-3...nce.js

windows10-2004-x64

1

tikiwiki-3...ess.js

windows7-x64

1

tikiwiki-3...ess.js

windows10-2004-x64

1

tikiwiki-3...tem.js

windows7-x64

1

tikiwiki-3...tem.js

windows10-2004-x64

1

tikiwiki-3...ger.js

windows7-x64

1

tikiwiki-3...ger.js

windows10-2004-x64

1

tikiwiki-3...er.ps1

windows7-x64

1

tikiwiki-3...er.ps1

windows10-2004-x64

1

tikiwiki-3...Viz.js

windows7-x64

1

tikiwiki-3...Viz.js

windows10-2004-x64

1

tikiwiki-3...ger.js

windows7-x64

1

tikiwiki-3...ger.js

windows10-2004-x64

1

tikiwiki-3...ase.js

windows7-x64

1

tikiwiki-3...ase.js

windows10-2004-x64

1

Analysis

  • max time kernel
    88s
  • platform
    debian-9_mipsel
  • resource
    debian9-mipsel-20240226-en
  • resource tags

    arch:mipselimage:debian9-mipsel-20240226-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipselsystem
  • submitted
    15-03-2024 18:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    tikiwiki-3.2/htaccess.sh

  • Size

    320B

  • MD5

    5781d7488308c4c18928583308cedc39

  • SHA1

    149a3a62057cfda77f7e797770dc64db5aba145c

  • SHA256

    327180de1dc76125a204498ca2a30cf2c1ad5462a335a50bc40bac3e8232cd62

  • SHA512

    f84c42bc234f2b4422e29c9e1640395782b4ab85b750bbc36d72d1b8527632fb2a78df403351a1ed8b1205850b716bba4864e01a710415030fd1d7a588ceabea

Score
3/10

Malware Config

Signatures

  • Reads runtime system information 2 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/tikiwiki-3.2/htaccess.sh
    /tmp/tikiwiki-3.2/htaccess.sh
    1⤵
      PID:713
      • /usr/bin/find
        find . -name _htaccess
        2⤵
        • Reads runtime system information
        PID:718
      • /bin/chmod
        chmod 644 ./_htaccess
        2⤵
          PID:719
        • /usr/bin/dirname
          dirname ./_htaccess
          2⤵
            PID:720
          • /usr/bin/dirname
            dirname ./_htaccess
            2⤵
              PID:721
            • /bin/mv
              mv ./_htaccess ./.htaccess
              2⤵
              • Reads runtime system information
              PID:722

          Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads