General

  • Target

    k3s-master.zip

  • Size

    1.0MB

  • Sample

    240715-fq8exasbrb

  • MD5

    754ef80899ae33c3d1bb923d8ae0512f

  • SHA1

    69f7047ec5531e26fb9b4548c4e68445c8d21911

  • SHA256

    5970adefd66635b0a58c373c4ca8632c379eb21503270ff1329d90ae66e45e31

  • SHA512

    789243871637aff47991d1d22a27023aba4dc3b7061ebf13271db75f179a03644cc5ab3c5def561462cdea6028ba637f04ae081b2a684b344ebbe30656d8bee6

  • SSDEEP

    24576:+1X6vrQzirrLlf788KIs2kSkirNGQSAxW7WSVa1k4hKdj+k9k7G:+1Or7fFg8C2kSkixG/AxW7Wuya+k9k7G

Score
6/10

Malware Config

Targets

    • Target

      k3s-master.zip

    • Size

      1.0MB

    • MD5

      754ef80899ae33c3d1bb923d8ae0512f

    • SHA1

      69f7047ec5531e26fb9b4548c4e68445c8d21911

    • SHA256

      5970adefd66635b0a58c373c4ca8632c379eb21503270ff1329d90ae66e45e31

    • SHA512

      789243871637aff47991d1d22a27023aba4dc3b7061ebf13271db75f179a03644cc5ab3c5def561462cdea6028ba637f04ae081b2a684b344ebbe30656d8bee6

    • SSDEEP

      24576:+1X6vrQzirrLlf788KIs2kSkirNGQSAxW7WSVa1k4hKdj+k9k7G:+1Or7fFg8C2kSkixG/AxW7Wuya+k9k7G

    Score
    1/10
    • Target

      k3s-master/.dockerignore

    • Size

      111B

    • MD5

      d757dfc93aaa8d4e1649c11bbe597d31

    • SHA1

      cea27036eed4c295d094f5a4f23f4b081daf83f0

    • SHA256

      bcf90aa6213fe82181d5a4427e26e19291060c155c65a5e1caf41f97562131fd

    • SHA512

      1c0fc61910ff6bfc8bfe8a4f798048fbfcabf063294476e8845176c6f6b90bcba50cadce41ffe18edd107e34548c10f3dbf2922b12e2cb9646a714b051164c7c

    Score
    3/10
    • Target

      k3s-master/.drone.yml

    • Size

      15KB

    • MD5

      05982c2c57ad92ac823c6e981b93a05e

    • SHA1

      342a156de2411fcc1e83369aa941ac0ce1e3e09e

    • SHA256

      df2a9df3177f270588cc1b5a3c6f905da6c5abffe740f129a615f1f3960dca07

    • SHA512

      dde0208bc15bb623bc83f95522ca25a0e351a5e983e07d155f1b3438cd22f87852a0f46ffa10d8f36c4b2ee8ded086db5c9997427c941439d1243fcafb81bdc8

    • SSDEEP

      192:J4+5Dg93aKv64HC//Fl1baFqY5DOCv64HC//FkO5DP7Ya64HwN//Fnd25Dcr5Di1:N5fSqY5+kO5KHnc5O56X58b5hsGMwCIA

    Score
    3/10
    • Target

      k3s-master/.droneignore

    • Size

      99B

    • MD5

      fbe929ba0c6304f3008fa4f160f56a59

    • SHA1

      42647405183e08d2974ec68d7f82c67d1a0994ab

    • SHA256

      c707b3d2a3378b89b0e1d02b983b62d5872d7f6d4f4e2fc6aaa86c7d042a795a

    • SHA512

      d538f7e8624bc2699b2cb0921cb6d75299142d93b57fc3c4d4cffb1f3d33b9ed5f464edd57df1620dac606365411c862c2ad91bdab518a0727e8f5ba683dcef2

    Score
    3/10
    • Target

      k3s-master/.github/.codecov.yml

    • Size

      330B

    • MD5

      4163f56abd83c761d9a50f8ff15b840a

    • SHA1

      25497e67422e17547a646020d5017413ef6addde

    • SHA256

      f96529144c15ce109564ee4b59cbddf3e4a85c087b6082d790e1c6f9e7744285

    • SHA512

      ca436c4fed61c4b93382442b35bc17499cfff154834bb54ef58e2943063caa53a715cd63e1f22f6a72afb8cf90e46ffc07b9e3c2f13aad6b2bacf446ebe37742

    Score
    3/10
    • Target

      k3s-master/contrib/util/check-config.sh

    • Size

      13KB

    • MD5

      cde64c9b85082f23ff918bdba0158b74

    • SHA1

      406d58bcbc67f4c83635c2987e5e4bbe5f53dd18

    • SHA256

      413824a3441bf70df482d79c456442eaec9535e9d50537188c1971836cc3457f

    • SHA512

      04bfc51b25e6b07d382ee71a12e7ebc47ae3c9e80a364d81250bda9d7ed839b0ea502135a0857bb6614d897562b6d489f8dbec0bc309c6a1c6f1de8f380ef689

    • SSDEEP

      384:YoUDY0tI3gBg3LjOMUgg70MyjljtzaKfusijG3HM7kh:/4Y0S3gBg3Ljjga2Vd7kh

    Score
    6/10
    • Reads list of loaded kernel modules

      Reads the list of currently loaded kernel modules, possibly to detect virtual environments.

    • Target

      k3s-master/contrib/util/diagnostics.sh

    • Size

      6KB

    • MD5

      6e501019bd5205a49b676899d12f5547

    • SHA1

      cc0af2f4201621618cbff4664b2154e4d4f964a1

    • SHA256

      fe6e3bd13ec6806c93034d7e23de0257b8484b7d5d85a1f098ee63b4f05b0683

    • SHA512

      765283c90977649eec0c312aa7268a7c5c559bd51e36743866095f497295d32c89a521e642d68c3c35d6845bac553ba05a84285f4cd8340efcd73aed3daac419

    • SSDEEP

      192:WsLZZvL6sXPUPvrrR+iJNTzF5uS6q6XZlRA8JBXb5zIVl4cmpb72eea:RDv+TrIGmC8P5zEk2Ta

    Score
    6/10
    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Target

      k3s-master/contrib/util/fetch-diags.sh

    • Size

      1KB

    • MD5

      cf726a94fc24bc17c5bf38649c4754e2

    • SHA1

      ffebc4d336c911e4b6b2c42eef5de82702fd804c

    • SHA256

      9b2448d0b28457d51e854facb161b0abf5046ec3224490a1cf787b9b7c96a699

    • SHA512

      8cc75054ca4e5321ef1aa3e98d94f3cadb2b6a4fe1dc76fb002daf8eeba62f44f981efcc4702e6aa4d2fb713167117766b1cb80a8ebdddb7ecd713fe9aacb4a4

    Score
    1/10
    • Target

      k3s-master/contrib/util/generate-custom-ca-certs.sh

    • Size

      5KB

    • MD5

      ed822f14bc77de0c0e7c9c0ec80433a7

    • SHA1

      ada60d5a28fdee7134be7fb191ce3222913abca0

    • SHA256

      0dcbcb95891ee05fdbd81dc3487753bbcf7f3cd290a01667185a809994954887

    • SHA512

      e6ab1ef0cae7e4307c73455957fd6dfcef9449446739f8a4195522fb99d717aaa11bbe5f183f8f13342d164d6603f4a46b9fa2f5874e57a72eb3f42d75345057

    • SSDEEP

      96:BQ2qeOnosYCHajd7Se/fSJ3n/PgSy2muj4/p8YMyo4eIYGQ7vRHImmjHP:cBoJ2ufSl/ry2Pc/eYMyo49qvRo3DP

    Score
    3/10
    • Target

      k3s-master/contrib/util/rotate-default-ca-certs.sh

    • Size

      4KB

    • MD5

      3cbaed4513022cda39f54568d7735319

    • SHA1

      f55f60017a6de6e5f0adf54d3370f76a8100590d

    • SHA256

      755383557261ffd5c1de6a15ffbd72467a94a96528c48339072c7ba84fcea88f

    • SHA512

      77a95533c5ab089551a54afc1b06759599ff1356f62ce1c7bb0080fc799eaf60a8689851eee5daca6df9456b1f36798ce38086decd3cc74c389e1d8dfab5324a

    • SSDEEP

      48:GwBAwHeRtZiYJJWMo9qn+PQzLbtxTEhxoPgE3Ibz/pbofoVChZV+XAE7uafoVGsQ:dBAw+kY+0jTM+YChlyYGkqJGT/O/a2

    Score
    3/10
    • Target

      k3s-master/install.sh

    • Size

      34KB

    • MD5

      6952123497848697d21cb202ba664b42

    • SHA1

      017e30b02c8366a2520494828b7f055389042f5d

    • SHA256

      937085bbac8e3b55209739762e05c2c1006c4f4fe65dba01908f3544dc47da27

    • SHA512

      112011c4d12b9793085e2d7049451e392890990d4850e78e641f921c9325b35801d42779f50cb6615b8762b9dea6d695b781d7c03f4eba6bb8618733c7a21fb0

    • SSDEEP

      768:yi19eHFDAn+ObYUhel/PmaG4wwqtXGE+Y:yi7elDOZhSPawyX1B

    Score
    6/10
    • Write file to user bin folder

MITRE ATT&CK Enterprise v15

Tasks

static1

Score
1/10

behavioral1

Score
1/10

behavioral2

Score
1/10

behavioral3

Score
3/10

behavioral4

Score
3/10

behavioral5

Score
3/10

behavioral6

Score
3/10

behavioral7

Score
3/10

behavioral8

Score
3/10

behavioral9

Score
3/10

behavioral10

Score
3/10

behavioral11

evasion
Score
6/10

behavioral12

evasion
Score
6/10

behavioral13

evasion
Score
6/10

behavioral14

evasion
Score
6/10

behavioral15

Score
6/10

behavioral16

Score
6/10

behavioral17

Score
6/10

behavioral18

Score
6/10

behavioral19

Score
1/10

behavioral20

Score
1/10

behavioral21

Score
1/10

behavioral22

Score
1/10

behavioral23

Score
3/10

behavioral24

Score
3/10

behavioral25

Score
3/10

behavioral26

Score
3/10

behavioral27

Score
3/10

behavioral28

Score
3/10

behavioral29

Score
3/10

behavioral30

Score
3/10

behavioral31

Score
6/10

behavioral32

antivm
Score
6/10