Overview

overview

6

Static

static

1

aws-hk-init-slave.sh

ubuntu-18.04-amd64

1

aws-hk-init-slave.sh

debian-9-armhf

6

aws-hk-init-slave.sh

debian-9-mips

aws-hk-init-slave.sh

debian-9-mipsel

Sharing

Copy URL Twitter E-mail

General

  • Target

    aws-hk-init-slave.sh

  • Size

    1KB

  • Sample

    240524-pb95maac44

  • MD5

    527d11250a02d88bc85225a4c3b25926

  • SHA1

    9086eea52c262219d6b86b5e00f0b1a4975d1eb3

  • SHA256

    199c32dbba615eb5c9fe3519e3674911212b6c8bbc735f4660b8d714d2d1b260

  • SHA512

    31041dd3564f8819cbe05e9eaef77e3c27f90a3ef5e2a92a1c1d30a07165480723f3b94cdd7d3b2fa24f790153f21784245559a47fb2c86159b814fff3dade4d

Score
6/10
linux

Malware Config

Targets

    • Target

      aws-hk-init-slave.sh

    • Size

      1KB

    • MD5

      527d11250a02d88bc85225a4c3b25926

    • SHA1

      9086eea52c262219d6b86b5e00f0b1a4975d1eb3

    • SHA256

      199c32dbba615eb5c9fe3519e3674911212b6c8bbc735f4660b8d714d2d1b260

    • SHA512

      31041dd3564f8819cbe05e9eaef77e3c27f90a3ef5e2a92a1c1d30a07165480723f3b94cdd7d3b2fa24f790153f21784245559a47fb2c86159b814fff3dade4d

    Score
    6/10

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2behavioral3behavioral4

MITRE ATT&CK Matrix

Tasks