c2dffd7078029816133d92e1786acb02f409cb8564efddaa24877e8e4e11a8be | Triage

Analysis

max time kernel
0s
max time network
128s
platform
ubuntu-18.04_amd64
resource
ubuntu1804-amd64-20240508-en
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-20240508-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
21/05/2024, 05:42

Sharing

Report Analysis Logs

General

Target

printifyClient_n.sh
Size

1KB
MD5

052a71cb8d61f5da41d2c54c4a2aee8a
SHA1

93f7031ec0563f10adbd6f77f26e28902683ea60
SHA256

c2dffd7078029816133d92e1786acb02f409cb8564efddaa24877e8e4e11a8be
SHA512

e482b7edd72f3d63bd1d353a1301ee623b172896eab05863131975a7be7e48a8fefee984d1d88f441eb9071a0ff285389f3a35eb75490b24dbc4663fe45f0ba4

Score

3^/10

Malware Config

Signatures

Reads runtime system information 3 IoCs

Reads data from /proc virtual filesystem.

description	ioc	Process
File opened for reading	/proc/self/maps	awk
File opened for reading	/proc/self/maps	awk
File opened for reading	/proc/filesystems	ls

/tmp/printifyClient_n.sh
/tmp/printifyClient_n.sh
1⤵
PID:1489
- /usr/bin/awk
  awk -F "=" "/\\[id\\]/{a=1}a==1&&\$1~//{print \$2;exit}" store.ini
  2⤵
  - Reads runtime system information
  PID:1492
- /usr/bin/awk
  awk -F "=" "/\\[save_path\\]/{a=1}a==1&&\$1~//{print \$2;exit}" store.ini
  2⤵
  - Reads runtime system information
  PID:1495
- /bin/ls
  ls ./cut_img///
  2⤵
  - Reads runtime system information
  PID:1496

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads