4c03d048b773f385dac72cf0ba41856ccedc41eeacbb35d50dccf8265704a2db | Triage

Analysis

max time kernel
0s
max time network
131s
platform
ubuntu-18.04_amd64
resource
ubuntu1804-amd64-20240508-en
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-20240508-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
24/05/2024, 12:26

Sharing

Report Analysis Logs

General

Target

oms-deployment.sh
Size

765B
MD5

76c74b0708cd0201d8b1077dc7412115
SHA1

a5c1452ee1236b6e642f6ca0c286813d49976f1b
SHA256

4c03d048b773f385dac72cf0ba41856ccedc41eeacbb35d50dccf8265704a2db
SHA512

47546feb5054f5fcafea53b72ca26fe0a1e5c5fe1c71a7e391db5bacce389dfd2ec758bee921ff5f6d087f0a7a3bb07a9924a6a410440b1478e7000f480c9651

Score

3^/10

Malware Config

Signatures

Reads runtime system information 3 IoCs

Reads data from /proc virtual filesystem.

description	ioc	Process
File opened for reading	/proc/filesystems	sudo
File opened for reading	/proc/sys/kernel/ngroups_max	sudo
File opened for reading	/proc/self/stat	sudo

/tmp/oms-deployment.sh
/tmp/oms-deployment.sh
1⤵
PID:1479
- /usr/bin/sudo
  sudo git config --global --add safe.directory /var/www/html/oms
  2⤵
  - Reads runtime system information
  PID:1480

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads