Overview

overview

7

Static

static

1

103.162.20...030.sh

ubuntu-18.04-amd64

7

103.162.20...030.sh

debian-9-armhf

7

103.162.20...030.sh

debian-9-mips

7

103.162.20...030.sh

debian-9-mipsel

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    103.162.20.166-sora.sh-2024-06-28T114030.sh

  • Size

    1KB

  • Sample

    240701-mqh9cawhlf

  • MD5

    03886bf0d399576fcb6db8c11fcbe06d

  • SHA1

    14aee1089d0cf3283da30aa045a454109d1a1c9f

  • SHA256

    19e122301b598e2a4a36b685887b7a2c238debfd310fd66b7d719d6454ec6ed2

  • SHA512

    8e809a3f916b198d808b61dc2da812c57d36f960a0800b61b2a3ae047c74220dbaa6b0e1c19f421101c831de54b7218204e3447b162c739917ca34d297be178c

Score
7/10
antivmlinux

Malware Config

Targets

    • Target

      103.162.20.166-sora.sh-2024-06-28T114030.sh

    • Size

      1KB

    • MD5

      03886bf0d399576fcb6db8c11fcbe06d

    • SHA1

      14aee1089d0cf3283da30aa045a454109d1a1c9f

    • SHA256

      19e122301b598e2a4a36b685887b7a2c238debfd310fd66b7d719d6454ec6ed2

    • SHA512

      8e809a3f916b198d808b61dc2da812c57d36f960a0800b61b2a3ae047c74220dbaa6b0e1c19f421101c831de54b7218204e3447b162c739917ca34d297be178c

    Score
    7/10
    antivm

    • Executes dropped EXE

    behavioral1behavioral2behavioral3behavioral4

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

1
T1497

Credential Access

Discovery

Virtualization/Sandbox Evasion

1
T1497

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks