Overview

overview

4

Static

static

1

smartsynch...tem.sh

ubuntu-18.04-amd64

4

smartsynch...tem.sh

debian-9-armhf

4

smartsynch...tem.sh

debian-9-mips

4

smartsynch...tem.sh

debian-9-mipsel

4

smartsynch...tem.sh

ubuntu-18.04-amd64

3

smartsynch...tem.sh

debian-9-armhf

1

smartsynch...tem.sh

debian-9-mips

1

smartsynch...tem.sh

debian-9-mipsel

1

smartsynch...ize.sh

ubuntu-18.04-amd64

3

smartsynch...ize.sh

debian-9-armhf

1

smartsynch...ize.sh

debian-9-mips

1

smartsynch...ize.sh

debian-9-mipsel

1

smartsynch...n/java

ubuntu-24.04-amd64

4

smartsynch...in/jfr

ubuntu-24.04-amd64

4

smartsynch...eytool

ubuntu-20.04-amd64

4

smartsynch...gistry

ubuntu-24.04-amd64

4

smartsynch.../jexec

ubuntu-20.04-amd64

1

smartsynch...fs.jar

windows7-x64

1

smartsynch...fs.jar

windows10-2004-x64

1

smartsynch...helper

ubuntu-22.04-amd64

1

smartsynch...ket.so

ubuntu-22.04-amd64

1

smartsynch...ent.so

ubuntu-24.04-amd64

1

smartsynch...gss.so

ubuntu-22.04-amd64

1

smartsynch...aas.so

ubuntu-24.04-amd64

1

smartsynch...ava.so

ubuntu-18.04-amd64

1

smartsynch...dwp.so

ubuntu-24.04-amd64

1

smartsynch...age.so

ubuntu-24.04-amd64

1

smartsynch...jli.so

ubuntu-24.04-amd64

1

smartsynch...sig.so

ubuntu-22.04-amd64

1

smartsynch...ent.so

ubuntu-24.04-amd64

1

smartsynch...ent.so

ubuntu-20.04-amd64

1

smartsynch...ext.so

ubuntu-22.04-amd64

1

Analysis

  • max time kernel
    0s
  • max time network
    130s
  • platform
    ubuntu-18.04_amd64
  • resource
    ubuntu1804-amd64-20240611-en
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-20240611-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    01-09-2024 20:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    smartsynchronize/bin/smartsynchronize.sh

  • Size

    3KB

  • MD5

    05246ab0d6c7efc58327daab2309cd5f

  • SHA1

    ee742020c31a2c2dcf6ff1fbd5a03d4b20c0a240

  • SHA256

    a4a43ba873ca34b4a45c9d4006ce405ea7444ae5cb06842af85d32a49b58cdb2

  • SHA512

    7e978cab9d94652e92f6ec918e9b9ddfe48b181fb688347b2babf11aac71042b7ae9593660b8d3fc8210a46f752bccd05baabbe8178893c7efb19f29866e8ed6

Score
3/10

Malware Config

Signatures

  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/smartsynchronize/bin/smartsynchronize.sh
    /tmp/smartsynchronize/bin/smartsynchronize.sh
    1⤵
      PID:1500
      • /bin/uname
        uname -m
        2⤵
          PID:1501
        • /usr/bin/dirname
          dirname /tmp/smartsynchronize/bin/smartsynchronize.sh
          2⤵
            PID:1502
          • /usr/bin/dirname
            dirname /tmp/smartsynchronize/bin
            2⤵
              PID:1505
            • /usr/bin/which
              which which
              2⤵
                PID:1506
              • /usr/bin/which
                which /tmp/smartsynchronize/jre/bin/java
                2⤵
                  PID:1507
                • /bin/mkdir
                  mkdir --parents /.config/smartsynchronize
                  2⤵
                  • Reads runtime system information
                  PID:1508
                • /usr/bin/touch
                  touch /.config/smartsynchronize/smartsynchronize.vmoptions
                  2⤵
                    PID:1509

                Network

                MITRE ATT&CK Matrix

                Replay Monitor

                Loading Replay Monitor...

                Downloads