fd7414b14c68318036cfc5348c0285d254500ae44c5a821408f4acfd7dd0b5da | Triage

Analysis

max time kernel
0s
max time network
129s
platform
ubuntu-18.04_amd64
resource
ubuntu1804-amd64-20240508-en
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-20240508-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
25-05-2024 12:44

Sharing

Report Analysis Logs

General

Target

startup.sh
Size

1KB
MD5

30e17eb6796058813e50acf462eafff4
SHA1

5940a4c40e32627dca1eeb613f23cbd4a05df39d
SHA256

fd7414b14c68318036cfc5348c0285d254500ae44c5a821408f4acfd7dd0b5da
SHA512

426cb1e747d65aa9baad737c76d1aed574761066f488936f49d22499c911d0cfd9f7f9b0d7072ea2172406fc0b1ecc3aaea7ba222b5d5fec42fce1f6dcecdfe5

Score

3^/10

Malware Config

Signatures

Reads runtime system information 3 IoCs

Reads data from /proc virtual filesystem.

description	ioc	Process
File opened for reading	/proc/filesystems	ls
File opened for reading	/proc/filesystems	id
File opened for reading	/proc/self/maps	awk

/tmp/startup.sh
/tmp/startup.sh
1⤵
PID:1516
- /usr/bin/id
  id -u
  2⤵
  - Reads runtime system information
  PID:1517
- /usr/bin/awk
  awk "{print \$9}"
  2⤵
  - Reads runtime system information
  PID:1522
- /usr/bin/head
  head -n 1
  2⤵
  PID:1521
- /bin/grep
  grep excel
  2⤵
  PID:1520
- /bin/ls
  ls -lt
  2⤵
  - Reads runtime system information
  PID:1519

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads