Overview

overview

4

Static

static

1

smartsynch...tem.sh

ubuntu-18.04-amd64

4

smartsynch...tem.sh

debian-9-armhf

4

smartsynch...tem.sh

debian-9-mips

4

smartsynch...tem.sh

debian-9-mipsel

4

smartsynch...tem.sh

ubuntu-18.04-amd64

3

smartsynch...tem.sh

debian-9-armhf

1

smartsynch...tem.sh

debian-9-mips

1

smartsynch...tem.sh

debian-9-mipsel

1

smartsynch...ize.sh

ubuntu-18.04-amd64

3

smartsynch...ize.sh

debian-9-armhf

1

smartsynch...ize.sh

debian-9-mips

1

smartsynch...ize.sh

debian-9-mipsel

1

smartsynch...n/java

ubuntu-24.04-amd64

4

smartsynch...in/jfr

ubuntu-24.04-amd64

4

smartsynch...eytool

ubuntu-20.04-amd64

4

smartsynch...gistry

ubuntu-24.04-amd64

4

smartsynch.../jexec

ubuntu-20.04-amd64

1

smartsynch...fs.jar

windows7-x64

1

smartsynch...fs.jar

windows10-2004-x64

1

smartsynch...helper

ubuntu-22.04-amd64

1

smartsynch...ket.so

ubuntu-22.04-amd64

1

smartsynch...ent.so

ubuntu-24.04-amd64

1

smartsynch...gss.so

ubuntu-22.04-amd64

1

smartsynch...aas.so

ubuntu-24.04-amd64

1

smartsynch...ava.so

ubuntu-18.04-amd64

1

smartsynch...dwp.so

ubuntu-24.04-amd64

1

smartsynch...age.so

ubuntu-24.04-amd64

1

smartsynch...jli.so

ubuntu-24.04-amd64

1

smartsynch...sig.so

ubuntu-22.04-amd64

1

smartsynch...ent.so

ubuntu-24.04-amd64

1

smartsynch...ent.so

ubuntu-20.04-amd64

1

smartsynch...ext.so

ubuntu-22.04-amd64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    smartsynchronize-linux-4_5_0.tar.gz

  • Size

    39.9MB

  • Sample

    240901-y99fes1fpa

  • MD5

    6e0a21369f332f3d83fd051d2c0e1f08

  • SHA1

    255bbe3638ecef68b238687e44a1f8e941cb2777

  • SHA256

    6a955c1c8cf439187b32439f76bc55ad96e9586a2cf6c251d4c8755a5672f9f6

  • SHA512

    f8aaf62a249b96c2839a77fa34ca0602956b7ff03d8490a808d532741987d87bcf4ba202d9be4f399018524b197be3ff1995adcee3f8959f91edd18698379945

  • SSDEEP

    786432:OqPYxvpa0VvNq8YG9KLfpAdauzs2G+QnFCJvDJ73h3qV3tOZbeTildkJ:dgxvn2iKLGda52GmDJz63tqFd0

Score
4/10
antivmlinuxpersistence

Malware Config

Targets

    • Target

      smartsynchronize/bin/add-menuitem.sh

    • Size

      2KB

    • MD5

      292bd8c7442f367735bb0f567ff7e666

    • SHA1

      b7f83667d6941e5ea50e8b095a2ab22d4116dc6c

    • SHA256

      d2fd430b5ad553e4e57cc88e437d2f4a3e24ea9c437801164da424702d4765d1

    • SHA512

      ee6352caabf672ccad06cde2e0cf40d1929cea99b64ccdb3dfb809fb9c16436117bfa07a1f1a928477cc42295b47e36980e51ecc3ddd5257468fad382a5135d4

    Score
    4/10
    persistence
    behavioral1behavioral2behavioral3behavioral4

    • Target

      smartsynchronize/bin/remove-menuitem.sh

    • Size

      1KB

    • MD5

      e76dfdc72d6e02b756cda49d0cbfdee2

    • SHA1

      c27f90b9d5f6eae0fb37f0ca4625052e55e9adf8

    • SHA256

      e61650db4396f6aade2752909d2aec2697aba46e12b85be3d27d60eb9dcd564c

    • SHA512

      631e488012833935e0b5ef112be4f98dc86155c8933283ac33b1c91b68dcafd70032e6eb3824647bbd78bfd0b0c00d507403ca903a6cafa020ef63280fb17f19

    Score
    3/10
    behavioral5behavioral6behavioral7behavioral8

    • Target

      smartsynchronize/bin/smartsynchronize.sh

    • Size

      3KB

    • MD5

      05246ab0d6c7efc58327daab2309cd5f

    • SHA1

      ee742020c31a2c2dcf6ff1fbd5a03d4b20c0a240

    • SHA256

      a4a43ba873ca34b4a45c9d4006ce405ea7444ae5cb06842af85d32a49b58cdb2

    • SHA512

      7e978cab9d94652e92f6ec918e9b9ddfe48b181fb688347b2babf11aac71042b7ae9593660b8d3fc8210a46f752bccd05baabbe8178893c7efb19f29866e8ed6

    Score
    3/10
    behavioral10behavioral11behavioral12behavioral9

    • Target

      smartsynchronize/jre/bin/java

    • Size

      12KB

    • MD5

      c00cea5ab45294d3572eaa1ce18ece43

    • SHA1

      ae9028739aa7a51cc5402985396b44d41f682c5f

    • SHA256

      4a86b744c77329285e67291ec3dee8390a581d4c131d1a776d029ed90f0ddce8

    • SHA512

      69eb6fff7533a0df979da928506f134cfee36765d8b4b5efddc7a30d23b588ff3f6956c3fbc6ac9bfcb7ecd0a8a2f7877231f075abd042b46cc97c91933415ea

    • SSDEEP

      96:RITp4Fq8cgBXBeK3ccl/B2YG/xo1s9ocCicN3pE4Ouu7/XEV8cgBXB/t6UA08RcP:RIWL10KMU/B2l559pcPuTD1/6

    Score
    4/10
    antivm
    behavioral13

    • Target

      smartsynchronize/jre/bin/jfr

    • Size

      12KB

    • MD5

      f2494dffff5cbea59f76040ce173db88

    • SHA1

      1e15d930fecf6a53e83aad60c9c4945e9ddbad59

    • SHA256

      1dd69c976edc6249068264d1a018e5ff607975c9957f07b13dcb5122328e28d5

    • SHA512

      87b28910c35bc13d6040fcc1b0edd625fac6a3914e593725f65775998f65acfea41758f6766a19bed6e1144ffdcbdc11e96217483f92661776b850f117606e86

    • SSDEEP

      96:R6uT+KFq8cgBXBOTKPo7DWmX37u3F6Fvw0eiEF3kNc/up7/XEV8cgBXB/t6UAf+R:RTZL1wKAHWmX3EYR5EupTD1/6

    Score
    4/10
    antivm
    behavioral14

    • Target

      smartsynchronize/jre/bin/keytool

    • Size

      12KB

    • MD5

      ed9978f14bbf77364bc65ddfde09c4b3

    • SHA1

      9af6fb137c2f077391769238ffc51614250d60ce

    • SHA256

      82b4a37cc9f4eb7e36bfaf70943795b6117045bb6d3a13e498a62fead3b3e45f

    • SHA512

      c499a40f677b15c803452b06132d00afc64cc61ceba91d07d9358de5d54617a4e953896a60aaacd290f4a81d1ef017f4a35684542341ab1479488da64f74aa1f

    • SSDEEP

      96:RyeT+KFq8cgBXBPKPo7DPTlMX37u3F6cAHiaV3ktc/up7/XEV8cgBXB/t6UAy+JY:RbZL19KAHPpMX3EYcRaepTD1/6O

    Score
    4/10
    antivm
    behavioral15

    • Target

      smartsynchronize/jre/bin/rmiregistry

    • Size

      12KB

    • MD5

      d2fc10c84b8781856273e6879f10ffd7

    • SHA1

      6f2d5e2b515b3cb68d68b18ca1f3903af545e5c8

    • SHA256

      3c9b4192f11b5ef7cd6825f808f078da3bc8c1754875ac4ee2326fe47ceb90f9

    • SHA512

      7d2b8cf150760199bcc4b9368bff5331a906c09249dad8c24795ebe5a3c7a48a07c4d45e99374cd5b4a24a6cb4e0bd71c3b7f1e68840ae4c942a8e356519ac29

    • SSDEEP

      96:RCWT+KFq8cgBXBRFKPo7DPPll2X37u3F6qYfoi2N3kNc/up7/XEV8cgBXB/t6UAD:RjZL1dKAHPH2X3EYqs2WpTD1/6/

    Score
    4/10
    antivm
    behavioral16

    • Target

      smartsynchronize/jre/lib/jexec

    • Size

      12KB

    • MD5

      adcf2c8ebb42b629a417e20a30119bef

    • SHA1

      0862fd071e6279552a24064898f53f72b68f0947

    • SHA256

      eb9515ededf0a796b72ec19240cd39fd878d4411eb9ce1188cbf9568226e690b

    • SHA512

      fed2f3ad97c7cbddc67b9f34ead0b086390e08f7595291039b03445c0ea2906404272881a08cb4f959bebef55cc53bedac1178fd3c483d3da3794bafdc1c97af

    • SSDEEP

      192:Rqe1FK8xjED8/Q45uNqHCEUVUk6X1/6Y:XK8pEw44VitVJ

    Score
    1/10
    behavioral17

    • Target

      smartsynchronize/jre/lib/jrt-fs.jar

    • Size

      107KB

    • MD5

      88b6f0c82df2dd3a707439886cd9a819

    • SHA1

      7d6f129c45f5544b3cf36d165d84013539d549d4

    • SHA256

      5525c80fd424c92ed335c02b32836129f7eb287db2b96836b209b3209efdd72f

    • SHA512

      903bb7d99fdf78bf6ceb249f1f0b7bce1f1e0b1d7ee442d760234480aa4075e561240bbfbfbf292d20219e4dfbb341657e210a0c7aef39c0b908ef1797ab2908

    • SSDEEP

      3072:DCAmX9S7p0P3xUnUTXb4H6YGz+SNYJWhnYKTsRO:DpE92IxU2fjLN4WJoRO

    Score
    1/10
    behavioral18behavioral19

    • Target

      smartsynchronize/jre/lib/jspawnhelper

    • Size

      17KB

    • MD5

      18fe06a5ee9872d993e8a7deccde5b67

    • SHA1

      ca0dd2471626131318972b9fd6de37b41c6beeef

    • SHA256

      c9c166cae7904c95208050fbcb222e80ceeb822133d0434e8c33e72eedd2bd97

    • SHA512

      0daebd1c67156d818566bca54e585828d7c761f48d752898eef2d91159b0a4d643b46d905ee28ab95cfccee0f40901b547334150664c3f6fb2f31e073ddd2416

    • SSDEEP

      192:Rtli1l7q+xV/EqmYMJZhvyGSAiZf2E93cBLXV044KN8J1/6:Raq+T/EhjJZl/SA+vYZN8

    Score
    1/10
    behavioral20

    • Target

      smartsynchronize/jre/lib/libdt_socket.so

    • Size

      27KB

    • MD5

      5332a02583389de6c48b82886389d07b

    • SHA1

      b1b5a4f55cee8c63baa604b5df0d610583ca1831

    • SHA256

      a408c01add47039b92070e6291cf9ea3c25d9d8ff5837bef17351f4625a7e389

    • SHA512

      7198cd6d4eac8bbe384117fb4d8324fb4bd278e6602141729a6a2d9dc2983504cb009b4a6d6a9391db83f2ca0b83ed65e682b2525dfd0db5f49633c6131acb48

    • SSDEEP

      768:/BF/KvrTs8vp6R9cD35lyVP+/kUbs37xE:rEn/kUb

    Score
    1/10
    behavioral21

    • Target

      smartsynchronize/jre/lib/libinstrument.so

    • Size

      49KB

    • MD5

      8d368d3c647308ee09a147538a34a075

    • SHA1

      862fad4a002e0966d53ba92a1d0df39b631c9574

    • SHA256

      c3fbee1750618d43edae3752bacfeb839b7fb63e867c081cb0766a5c8ca1c091

    • SHA512

      a2685d10de710088fa10695d012e593b40d632baa64a463e2c92d088231948f401ed10102f7cb439fda923cbed3a053ae218ae4a71a7e992feb9ffc0c4adae38

    • SSDEEP

      768:C7Qk1uEgxDXZR87F3sgKeuqpfhSuvP6T2LvY8yih1T/8Qb5F0iuDO4CN/s:/EOGhSunL3VUUr2j

    Score
    1/10
    behavioral22

    • Target

      smartsynchronize/jre/lib/libj2gss.so

    • Size

      46KB

    • MD5

      0ed700deb0786adb6757f30b81435ebd

    • SHA1

      4140b8d30f65ab9274f7437245f8b8ff2e794ecc

    • SHA256

      a6521c8bface7900cab7026f8a8a679d6aba34ff7fd5b51b310dd29636745e8f

    • SHA512

      995cd0d6002d029c2c23fde8b049ab713989cc59e3623a5a455cf6518f3e47c4a2e11b50c4e1bb003a574838f4eebb5605aabf220b2ceca01b1af650c8d58c57

    • SSDEEP

      768:jGoyKKciDn1ZKMNH/4FV3YeU8AIiSV4tOPGxp:H7FiD1ZzCFV3YeU8AIXV4tOPq

    Score
    1/10
    behavioral23

    • Target

      smartsynchronize/jre/lib/libjaas.so

    • Size

      8KB

    • MD5

      2c0c8245696989cdbdfe86514240959f

    • SHA1

      1da919e8b07041c2055ac0bb4ff37aefe9608b88

    • SHA256

      a70a49b2380fcbaae524186ff9ba634a6cbbbcfc5c5c27799a4baf7038433201

    • SHA512

      786ab5da2cbcbf9887d6b38ba7cc00222ebf6d03a06d910d1789b47cc8cb3e9a4f42ebb5769dfdd160ebb35a96d5b2c16507b180271f3f9efaf9d41743df0671

    • SSDEEP

      96:RqBXBFhLnMSjSYctdoeJSZ6iXEHU7/HBXB9UTEvvl5Boe:Rq1XhLbCI02N00b1/

    Score
    1/10
    behavioral24

    • Target

      smartsynchronize/jre/lib/libjava.so

    • Size

      186KB

    • MD5

      f4a10811fc2c8c286dc15514e45bc091

    • SHA1

      4b1652a3a4dfb12af97f637f00bfecaf01506a3e

    • SHA256

      4128fb3b9f346f76aa455cc27f5cbbcbeb85cbeb88460e9e6be7d4b6294bfc29

    • SHA512

      e2e822bb7b5690b5bebfc5b2f164b10aa49f444e395257a29792e530f81dff0a72e1ce05f98826f1aa1567545b52ade2bbffce3d85a0849cbc294942fbdeb49f

    • SSDEEP

      3072:amTcY2YYZTkruHEG75LMMjUWAR25OPw5HNwc:aZXHEOLFJ

    Score
    1/10
    behavioral25

    • Target

      smartsynchronize/jre/lib/libjdwp.so

    • Size

      283KB

    • MD5

      19c5d28f889187bddbb05b3ee2a23f3b

    • SHA1

      9290cd1735c7521102443354b60a276ca54f9e5e

    • SHA256

      3b2dc8e6bc34b146576bb070f096cdae8b29e667cca96624da0b6ae09b416a4e

    • SHA512

      671d31b5a31815c3955200a977f73a0d58a74b2937215fe407849f20020b4228c1c880c2b42504badbc4534ba66a74c84f762aaa1fb9af39cecf4bef3a4db601

    • SSDEEP

      3072:WgbkRrXQcu+cOpfaH9MMU6bvXLCspMhCeIuQjkWq4Gm5JhugosNOSiIAAZIS9Lzc:WckNXA+VhavXlpf5X1dOgos6q9//Ez

    Score
    1/10
    behavioral26

    • Target

      smartsynchronize/jre/lib/libjimage.so

    • Size

      142KB

    • MD5

      d390e1219bbf711fcad824ea77acea75

    • SHA1

      09d8637103b284078e5d13a13ef79ab237db96d8

    • SHA256

      96d7e18782479cd5c33770bb2665e07aad4afdd957ffda01edf25897b79771a7

    • SHA512

      8dead6e08368eab183015070b2fe8631e450507b047c6d75db9d4cdfa049610609b1bcdb9ab41636daa4f79907705e475dab568a6d9a95f0c021021b3fd7d857

    • SSDEEP

      3072:o/K/q+EsrDxIOL258BDizgTwqHIq/zPtO24Yk8dTcEgXTW1/HUWpyW+N3WuYOlZC:t//EsSOagOg0qHj/ztD4Yk8dTcEgXTS8

    Score
    1/10
    behavioral27

    • Target

      smartsynchronize/jre/lib/libjli.so

    • Size

      71KB

    • MD5

      4ceb35fdd2ff17563ecc9815ab1c6755

    • SHA1

      ac7acd37c605b5482d3aa7d6cbc767ed1549a225

    • SHA256

      47eb5e5d9533fe600304b6bcd8d382967da143f4735265cddbd5822f7a932a1a

    • SHA512

      45ac161a48401868f2d57b39dc73f0c4f7a05a9b4c9e41d77359edd4d0aec535c12cfaffd68c11b5043fa0d4b1bb3de7dc44f79542ef37909fd72180d4fcb811

    • SSDEEP

      1536:bjz43ts6ZIiHWpl7oAMBwFU302SHZo5A:vMtAsLwu302cZB

    Score
    1/10
    behavioral28

    • Target

      smartsynchronize/jre/lib/libjsig.so

    • Size

      13KB

    • MD5

      43dd503cd58a4f82fdae9da85817e7b7

    • SHA1

      3605085268cf6587083d34dff0ecc5166bcbd7c9

    • SHA256

      bd0821081b0c444992ffa520c6cea089f2571979d018fc439ec6ace55c2197e4

    • SHA512

      c8f6a2390b4f371eac344d095987054c712350984575152cbbd76e8ef7209d4e8cfba0647702d1162da8f1b8e1ff20760d0cb7319e9cb5b618af74ece4fc380e

    • SSDEEP

      96:R/VQPGzBXBL4DwbMoqmxpwkGyShzxdh/ybnQmOa1BYGpVvi7t7/wsGj1BXB9UuRX:R/VQPA1xdMoXxWkGLJDWYGeBh41/z6

    Score
    1/10
    behavioral29

    • Target

      smartsynchronize/jre/lib/libmanagement.so

    • Size

      25KB

    • MD5

      e987208f8903324852090686d8942003

    • SHA1

      168b8e573acffe40d4757c9d3f31eafe016e80d1

    • SHA256

      a75fd367125f6b65c3c98378840803413c45ee4dc4122dce5438a1d3b51ae924

    • SHA512

      f35cae1562ab58f0e5b0e9327db21acd9486f5062f1653e2c3ad87da05dd57ce3384261988c6152c832faa88eeeb03e98cacd8b48c8a27fb85a2793b7b7d1700

    • SSDEEP

      192:RxkpJjHMxWEsOlgcGGs41G7w6pjsl9peOc41/iUajCz9/XKwC70Ux23jHMxWEsO9:HkvsgEuGoPjsl6xci4p/eYfzsgEuG

    Score
    1/10
    behavioral30

    • Target

      smartsynchronize/jre/lib/libmanagement_agent.so

    • Size

      8KB

    • MD5

      87b49e0c2ac26651105a07ef4fd7d18a

    • SHA1

      15cc6480b3d9864b1fe266e4cf21823a7d11412b

    • SHA256

      5008a7cc0caf5d90efa2384240e3ff41443eb1ff154367e366ae86a2e95f44a2

    • SHA512

      b87ba3b7a09bd478d7320e2610f74060a3968c982201ab30acd23498143065fbf50dc1356d0fd97759cc32805edeea4d803a380da43ac5406911c6e6e835c264

    • SSDEEP

      96:R38WlIBXBkk+W+qFuGMbiwVJmp7/9WlIBXB9UY0f5BYe:RsWi1q9CwVwpZWi1/

    Score
    1/10
    behavioral31

    • Target

      smartsynchronize/jre/lib/libmanagement_ext.so

    • Size

      32KB

    • MD5

      2003bd1b27feb0b19e6518a7fcc49db7

    • SHA1

      042f26848e4c753ccd232af226df10bd1c0cdba6

    • SHA256

      f88e520529aacce5d8d8015f37a7c9208a4ac47f5b3366f3d4e6ac8db6720c6d

    • SHA512

      c592c6576735c50e73c83446bb50c2aca9e89588742ee7f8b8f5de2ea7fb62f850a3681850b97b60aa8028c55d351b089cd571fc9ca0b461cf6d6a152dcffaf3

    • SSDEEP

      384:rp+8cx4TB6F/ZFsd9Ywb6mGwm1IW4L2yFyMzY998LJg6d+8cx4TB6F:rjQyTb6twrfyMz89wg6n

    Score
    1/10
    behavioral32

MITRE ATT&CK Enterprise v15

Tasks

static1

Score
1/10

behavioral1

persistence
Score
4/10

behavioral2

persistence
Score
4/10

behavioral3

persistence
Score
4/10

behavioral4

persistence
Score
4/10

behavioral5

Score
3/10

behavioral6

Score
1/10

behavioral7

Score
1/10

behavioral8

Score
1/10

behavioral9

Score
3/10

behavioral10

Score
1/10

behavioral11

Score
1/10

behavioral12

Score
1/10

behavioral13

antivm
Score
4/10

behavioral14

antivm
Score
4/10

behavioral15

antivm
Score
4/10

behavioral16

antivm
Score
4/10

behavioral17

Score
1/10

behavioral18

Score
1/10

behavioral19

Score
1/10

behavioral20

Score
1/10

behavioral21

Score
1/10

behavioral22

Score
1/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
1/10

behavioral32

Score
1/10